Date: Fri, 12 Nov 2021 16:33:23 -0500 From: grarpamp <grarpamp@gmail.com> To: current@freebsd.org Cc: herbert@gojira.at Subject: Re: Extracting base.txz files missing flags Message-ID: <CAD2Ti2-gL-%2Bjn949pGD9fkv_NS_ZCUqdx0S0giv=diJK0NT_1g@mail.gmail.com> In-Reply-To: <87fss1rxfl.wl-herbert@gojira.at> References: <87fss1rxfl.wl-herbert@gojira.at>
next in thread | previous in thread | raw e-mail | index | archive | help
Flags are not security since root will bypass everything. While some may beg for anti-footshooting, but where might that cry end up... chflags -Rhx schg / . Nor should freebsd fill that role when local admins know best for and given their own individual environments. If local tendency is to run around as root and disrupt your filesystems so bad that even these... > ./libexec/ld-elf.so.1 > ./libexec/ld-elf32.so.1 ... get routinely wrecked, then you have bigger local problems to work on than freebsd can help you with :) nb: /var/empty is an ssh make install-time thing, that mtree might have picked up, but sshd itself doesn't check or require schg [theatre] there. tar should probably get an extended verbose mode format that lists all metadata that is extractable to disk, such as flags.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAD2Ti2-gL-%2Bjn949pGD9fkv_NS_ZCUqdx0S0giv=diJK0NT_1g>