From owner-freebsd-geom@FreeBSD.ORG  Mon May  3 06:30:41 2004
Return-Path: <owner-freebsd-geom@FreeBSD.ORG>
Delivered-To: freebsd-geom@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 401E316A4CE; Mon,  3 May 2004 06:30:41 -0700 (PDT)
Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.86.163])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 61A0F43D48; Mon,  3 May 2004 06:30:40 -0700 (PDT)
	(envelope-from phk@phk.freebsd.dk)
Received: from critter.freebsd.dk (localhost [127.0.0.1])
	by critter.freebsd.dk (8.12.11/8.12.11) with ESMTP id i43DUbRQ064342;
	Mon, 3 May 2004 15:30:37 +0200 (CEST)
	(envelope-from phk@phk.freebsd.dk)
To: des@des.no (=?iso-8859-1?q?Dag-Erling_Sm=F8rgrav?=)
From: "Poul-Henning Kamp" <phk@phk.freebsd.dk>
In-Reply-To: Your message of "Mon, 03 May 2004 14:04:57 +0200."
             <xzp7jvtpvh2.fsf@dwp.des.no> 
Date: Mon, 03 May 2004 15:30:37 +0200
Message-ID: <64341.1083591037@critter.freebsd.dk>
cc: Norikatsu Shigemura <nork@freebsd.org>
cc: freebsd-geom@freebsd.org
Subject: Re: new GEOM feature - geom_vol_msdosfs 
X-BeenThere: freebsd-geom@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: GEOM-specific discussions and implementations
	<freebsd-geom.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-geom>
List-Post: <mailto:freebsd-geom@freebsd.org>
List-Help: <mailto:freebsd-geom-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 03 May 2004 13:30:41 -0000

In message <xzp7jvtpvh2.fsf@dwp.des.no>, =?iso-8859-1?q?Dag-Erling_Sm=F8rgrav?=
 writes:
>"Poul-Henning Kamp" <phk@phk.freebsd.dk> writes:
>> On the other hand, name collisions are already passively neutered
>> in DEVFS, so if we can live with "Don't do that then" handling of
>> it, then there is no reason to not have them as different GEOM
>> classes, which certainly makes for simpler and cleaner code.
>
>so I see a box that has /dev/vol/var mounted on /var, format a USB
>stick and label it as var, stick it in and press reset.  the stick
>happens to contain a file, cron/tabs/root, which looks like this:
>
>@reboot /bin/sh -c 'echo | /sbin/pw usermod root -h 0'
>
>boom, instant root privs.  ok, so it requires physical access, but
>still...

I guess neither of you were around when Jordan blasted the mailarchives
with an ill applied automounter.

You should never automount sources you have hardconfigured on any
system directory.  That is why automounters generally put things
under /vol or similar.

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.