Date: Mon, 03 May 2004 15:30:37 +0200 From: "Poul-Henning Kamp" <phk@phk.freebsd.dk> To: des@des.no (=?iso-8859-1?q?Dag-Erling_Sm=F8rgrav?=) Cc: freebsd-geom@freebsd.org Subject: Re: new GEOM feature - geom_vol_msdosfs Message-ID: <64341.1083591037@critter.freebsd.dk> In-Reply-To: Your message of "Mon, 03 May 2004 14:04:57 %2B0200." <xzp7jvtpvh2.fsf@dwp.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <xzp7jvtpvh2.fsf@dwp.des.no>, =?iso-8859-1?q?Dag-Erling_Sm=F8rgrav?= writes: >"Poul-Henning Kamp" <phk@phk.freebsd.dk> writes: >> On the other hand, name collisions are already passively neutered >> in DEVFS, so if we can live with "Don't do that then" handling of >> it, then there is no reason to not have them as different GEOM >> classes, which certainly makes for simpler and cleaner code. > >so I see a box that has /dev/vol/var mounted on /var, format a USB >stick and label it as var, stick it in and press reset. the stick >happens to contain a file, cron/tabs/root, which looks like this: > >@reboot /bin/sh -c 'echo | /sbin/pw usermod root -h 0' > >boom, instant root privs. ok, so it requires physical access, but >still... I guess neither of you were around when Jordan blasted the mailarchives with an ill applied automounter. You should never automount sources you have hardconfigured on any system directory. That is why automounters generally put things under /vol or similar. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?64341.1083591037>