From owner-freebsd-fs@FreeBSD.ORG  Mon Jun  2 10:30:11 2008
Return-Path: <owner-freebsd-fs@FreeBSD.ORG>
Delivered-To: freebsd-fs@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 32E0F106564A;
	Mon,  2 Jun 2008 10:30:11 +0000 (UTC)
	(envelope-from brde@optusnet.com.au)
Received: from mail11.syd.optusnet.com.au (mail11.syd.optusnet.com.au
	[211.29.132.192])
	by mx1.freebsd.org (Postfix) with ESMTP id 958978FC18;
	Mon,  2 Jun 2008 10:30:10 +0000 (UTC)
	(envelope-from brde@optusnet.com.au)
Received: from c220-239-252-11.carlnfd3.nsw.optusnet.com.au
	(c220-239-252-11.carlnfd3.nsw.optusnet.com.au [220.239.252.11])
	by mail11.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id
	m52AU2Ak000559
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
	Mon, 2 Jun 2008 20:30:04 +1000
Date: Mon, 2 Jun 2008 20:30:02 +1000 (EST)
From: Bruce Evans <brde@optusnet.com.au>
X-X-Sender: bde@delplex.bde.org
To: Julian Elischer <julian@elischer.org>
In-Reply-To: <48439DE6.50505@elischer.org>
Message-ID: <20080602202420.N3083@delplex.bde.org>
References: <48438687.1080606@gmail.com> <48439DE6.50505@elischer.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: freebsd-fs@freebsd.org, Ighighi <ighighi@gmail.com>,
	bug-followup@freebsd.org
Subject: Re: kern/122047: [ext2fs] incorrect handling of UF_IMMUTABLE /
 UF_APPEND, flag on EXT2FS (maybe others)
X-BeenThere: freebsd-fs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Filesystems <freebsd-fs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-fs>,
	<mailto:freebsd-fs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-fs>
List-Post: <mailto:freebsd-fs@freebsd.org>
List-Help: <mailto:freebsd-fs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-fs>,
	<mailto:freebsd-fs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jun 2008 10:30:11 -0000

On Mon, 2 Jun 2008, Julian Elischer wrote:

> Ighighi wrote:
>> On Linux, only the root user may set/clear the immutable/append flags
>> on ext2 filesystems... Shouldn't FreeBSD do this too, as a POLA?
>
> No I think it should preserver the BSD scheme where being able to
> change the immutable bits is controlled by the system secure level.
> (and your UID of course). At least I think that is what I would
> expect. (All file systems to behave about the same for a
> particular OS.

No, the securelevel already controls things, and the BSD scheme reduces
to only allowing root (strictly, processes with appropriate privilege,
as restricted by securelevel and jails etc, but never mere users), to
change immutable bits, because ext2fs doesn't have any user immutable
bits to change (except phantom bits due to bugs in the current FreeBSD
implementation).

Bruce