Date: Mon, 24 Nov 2003 23:59:50 +0000 From: Ceri Davies <ceri@submonkey.net> To: Rayson Ho <raysonlogin@yahoo.com> Cc: freebsd-hackers@freebsd.org Subject: Re: "secure" file flag? Message-ID: <20031124235950.GH66785@submonkey.net> In-Reply-To: <20031119003133.18473.qmail@web11404.mail.yahoo.com> References: <20031119003133.18473.qmail@web11404.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Tue, Nov 18, 2003 at 04:31:32PM -0800, Rayson Ho wrote: > I am wondering if it is useful to have a "secure" file flag?? > > The secure file flag will be set for files that contain sensitive data. > Then the OS will take special care when operating on those "secure" > files. > > e.g. when deleting a "secure" file, the OS will overwrite the file with > random data. It would also be useful to have a "noexport" flag, which would have the NFS code refuse to send it over the network. I could personally use this for setting on my PGP and SSH keys, while exporting the rest of /home. I did look at implementing this, but couldn't find the "correct" place to do the check for the flag. Any pointers for a kernel newbie? Ceri -- [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/wpt2ocfcwTS3JF8RAgA0AKCKsb7lXoMVUXuTYkmpMi+bLieCMQCfQhkK bAv5t7mx4wjwlDdy0dE2scA= =5x5g -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031124235950.GH66785>