From owner-freebsd-hackers@FreeBSD.ORG Thu Sep 13 07:23:19 2007 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2CB3716A417 for ; Thu, 13 Sep 2007 07:23:19 +0000 (UTC) (envelope-from ighighi@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.226]) by mx1.freebsd.org (Postfix) with ESMTP id 0388513C467 for ; Thu, 13 Sep 2007 07:23:18 +0000 (UTC) (envelope-from ighighi@gmail.com) Received: by wx-out-0506.google.com with SMTP id i29so384893wxd for ; Thu, 13 Sep 2007 00:23:18 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding; bh=HeHGMadJi5JKDLhYv8GOzRjm3LvEadZONxsZa2EWwk0=; b=AEUtN8BY1HvOOZhmrT3qngdbTp1vro4dxI9kz6hIDo2ZOGCQQ2sQWrnlMKJ/yid0fy+u0tvgAKa7bMbtlnD0UTXmz8tP8ARLXlS0p5OAGDVpmziWWaT0uQbx7N9kWniK4U/06z+d7ocG0FmJTRcXYDvOq0sVabct2lNHLYakhME= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding; b=fBB9lqkaLhBo2PTr9BrydCUyxyheN7g92HdEt2Zx9gB83EI5B3ahLkqVjQAbmemD+6vHiA+028Zhffpo/TImXlt9d19k0qRfAdmMJB9WcbtNKK19pkTyYJipd4t48PbhbHRr3i36vf98eoSMAAh+lssw+LUJ6OtOp6P32ZRkoWs= Received: by 10.90.94.2 with SMTP id r2mr946523agb.1189666603127; Wed, 12 Sep 2007 23:56:43 -0700 (PDT) Received: from orion.nebula.mil ( [200.44.87.69]) by mx.google.com with ESMTPS id 9sm10078021agc.2007.09.12.23.56.40 (version=TLSv1/SSLv3 cipher=RC4-MD5); Wed, 12 Sep 2007 23:56:41 -0700 (PDT) Message-ID: <46E8DF09.40008@gmail.com> Date: Thu, 13 Sep 2007 02:56:09 -0400 From: Ighighi User-Agent: Thunderbird 2.0.0.6 (X11/20070803) MIME-Version: 1.0 To: freebsd-hackers@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: local "jailed" symlinks X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Sep 2007 07:23:19 -0000 I run multiple operating systems on my PC and access their filesystems from FreeBSD. Recently I've been playing with the idea that it may be useful to have a mount flag similar to MNT_NOSYMFOLLOW that restricts symbolic links in the flagged filesystems to them, that at least avoids crossing to parent directories on different filesystems. A "jailed symlink" of sorts. I believe that making the root directory the mount point when performing lookups is the way to go. What are the issues that I need to be aware of ? Any suggestions are welcome. Cheers, Igh.