From owner-freebsd-arch@FreeBSD.ORG  Mon Jul 21 10:34:44 2003
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
Delivered-To: freebsd-arch@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4AEAA37B401
	for <arch@freebsd.org>; Mon, 21 Jul 2003 10:34:44 -0700 (PDT)
Received: from heron.mail.pas.earthlink.net (heron.mail.pas.earthlink.net
	[207.217.120.189])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A896143F3F
	for <arch@freebsd.org>; Mon, 21 Jul 2003 10:34:43 -0700 (PDT)
	(envelope-from tlambert2@mindspring.com)
Received: from user-2ivfmrb.dialup.mindspring.com ([165.247.219.107]
	helo=mindspring.com)
	by heron.mail.pas.earthlink.net with asmtp (SSLv3:RC4-MD5:128)
	(Exim 3.33 #1)	id 19eeYU-0007FE-00; Mon, 21 Jul 2003 10:34:35 -0700
Message-ID: <3F1C23EA.7E06CDA9@mindspring.com>
Date: Mon, 21 Jul 2003 10:33:30 -0700
From: Terry Lambert <tlambert2@mindspring.com>
X-Mailer: Mozilla 4.79 [en] (Win98; U)
X-Accept-Language: en
MIME-Version: 1.0
To: Ian Dowse <iedowse@maths.tcd.ie>
References: <200307201601.aa07561@salmon.maths.tcd.ie>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-ELNK-Trace: b1a02af9316fbb217a47c185c03b154d40683398e744b8a4cb40baf9b8b16471fdd325ebc9837fcc3ca473d225a0f487350badd9bab72f9c350badd9bab72f9c
cc: arch@freebsd.org
Subject: Re: *statfs exposure of file system IDs to non-root users
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussion related to FreeBSD architecture
	<freebsd-arch.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jul 2003 17:34:44 -0000

Ian Dowse wrote:
> See previous posts here on the subject of unmounting by filesystem
> ID. The filesystem ID is a way of unambiguously specifying which
> file system is to be unmounted, whereas the mountpoint or device
> node may not be unique.

Yes, I'm aware of this facility for breaking sub-mounts.  8-).  The
implementation of mounts needs to change so that the mounts occur
in the higher layers, rather than the lower, for the covered vnode.


> The umount utility now passes a filesystem
> ID to unmount(2), which works fine when run by root and when umount
> is extracting an entry from the list obtained from getfsstat(2),
> but it doesn't work as a normal user when the ID comes from statfs(2).

Normal users should not be permitted to unmount /.  8-).

-- Terry