Date: Fri, 31 Jan 2003 02:24:00 +0200 From: Giorgos Keramidas <keramida@ceid.upatras.gr> To: Garrett Wollman <wollman@lcs.mit.edu> Cc: Kirk McKusick <mckusick@beastie.mckusick.com>, freebsd-current@FreeBSD.org Subject: Re: dump -L and privilege Message-ID: <20030131002400.GC758@gothmog.gr> In-Reply-To: <200301302052.h0UKqW6m008952@khavrinen.lcs.mit.edu> References: <7miswoocye.wl@black.imgsrc.co.jp> <200301300217.h0U2HVFL015158@beastie.mckusick.com> <200301302052.h0UKqW6m008952@khavrinen.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2003-01-30 15:52, Garrett Wollman <wollman@lcs.mit.edu> wrote: > <<On Wed, 29 Jan 2003 18:17:31 -0800, Kirk McKusick <mckusick@beastie.mckusick.com> said: > > The other alternative would be to > > create a setuid-to-root program that would take a snapshot and > > chown it to the user that does dumps. > > I think this would actually be a useful feature for more than just > dumps. I might want to allow some users (say, those in group > `operator') to be able to create snapshots on their own, without > allowing arbitrary mounting privileges. Do normal permissions apply for the files included in a snapshot? It would be horrible from a security standpoint if any user could use a setuid program to snapshot filesystems, mount the snapshot to places of their own, and read random files from the mounted snapshot. </knee jerk reaction> - Giorgos To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030131002400.GC758>