On Wed, 2015-11-04 at 14:27 +0100, Carlos E. R. wrote:
My basic question is whether or not there is nowadays
"appropriate stuff" that can be used to protect user data even from being read by root so that malware that runs as root cannot read the protected user data?
Telcontar:~ # l /run/user/1000/gvfs ls: cannot access /run/user/1000/gvfs: Permission denied Telcontar:~ #
gvfs is a bit different to normal directories - it's actually a fuse mount point. fuse per default only gives access to the user - root is blocked out there. In 'essence', the fuse FS driver running in user space, is the only one having the credentials to access the remote instance (could be really remote for example). Cheers, Dominique -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org