From owner-freebsd-questions@FreeBSD.ORG Sat Jan 15 10:11:31 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 076051065705 for ; Sat, 15 Jan 2011 10:11:31 +0000 (UTC) (envelope-from perryh@pluto.rain.com) Received: from agora.rdrop.com (agora.rdrop.com [IPv6:2607:f678:1010::34]) by mx1.freebsd.org (Postfix) with ESMTP id DB61C8FC12 for ; Sat, 15 Jan 2011 10:11:30 +0000 (UTC) Received: from agora.rdrop.com (66@localhost [127.0.0.1]) by agora.rdrop.com (8.13.1/8.12.7) with ESMTP id p0FABPIx077107 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sat, 15 Jan 2011 02:11:25 -0800 (PST) (envelope-from perryh@pluto.rain.com) Received: (from uucp@localhost) by agora.rdrop.com (8.13.1/8.12.9/Submit) with UUCP id p0FABPsH077106; Sat, 15 Jan 2011 02:11:25 -0800 (PST) Received: from fbsd61 by pluto.rain.com (4.1/SMI-4.1-pluto-M2060407) id AA22663; Sat, 15 Jan 11 02:05:41 PST Date: Sat, 15 Jan 2011 02:05:00 -0800 From: perryh@pluto.rain.com To: smithi@nimnet.asn.au Message-Id: <4d31714c./ou+xrju7k5Jpolu%perryh@pluto.rain.com> References: <20110114032629.8042C1065782@hub.freebsd.org> <20110115003107.O62193@sola.nimnet.asn.au> In-Reply-To: <20110115003107.O62193@sola.nimnet.asn.au> User-Agent: nail 11.25 7/29/05 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: swegill@gmail.com, freebsd@edvax.de, freebsd-questions@freebsd.org Subject: Re: httpd-modsec2_debug.log: Operation not permitted X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Jan 2011 10:11:31 -0000 Ian Smith wrote: > Swe, I suspect the reason you can't just delete these files is > likely because something has them open for writing, and the system > won't let you remove such files, naturally enough. Really? Must be a fairly recent change -- and IMO not necessarily a good one. For one thing, it would break one of the long-standing methods for ensuring that scratch files get cleaned up when a program exits, even under circumstances which don't allow for signal handlers to be run. Last I knew having a file open, even for writing, was no protection against its last link being removed. The _inode_ won't go away until the last handle is closed, but the _directory entry_ can still be removed.