From owner-freebsd-hackers Sun Oct 20 01:21:50 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id BAA16081 for hackers-outgoing; Sun, 20 Oct 1996 01:21:50 -0700 (PDT) Received: from irz301.inf.tu-dresden.de (irz301.inf.tu-dresden.de [141.76.1.11]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id BAA16074 for ; Sun, 20 Oct 1996 01:21:38 -0700 (PDT) Received: from sax.sax.de (sax.sax.de [193.175.26.33]) by irz301.inf.tu-dresden.de (8.6.12/8.6.12-s1) with ESMTP id KAA20743; Sun, 20 Oct 1996 10:21:04 +0200 Received: (from uucp@localhost) by sax.sax.de (8.6.12/8.6.12-s1) with UUCP id KAA00208; Sun, 20 Oct 1996 10:21:04 +0200 Received: (from j@localhost) by uriah.heep.sax.de (8.7.6/8.6.9) id JAA28167; Sun, 20 Oct 1996 09:58:55 +0200 (MET DST) From: J Wunsch Message-Id: <199610200758.JAA28167@uriah.heep.sax.de> Subject: Re: setuid, core dumps, ftpd, and DB To: tech-userlevel@netbsd.org, freebsd-hackers@freebsd.org (FreeBSD hackers) Date: Sun, 20 Oct 1996 09:58:55 +0200 (MET DST) Reply-To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch) In-Reply-To: <20396.845795952@ux2.sp.cs.cmu.edu> from Chris G Demetriou at "Oct 20, 96 03:19:12 am" X-Phone: +49-351-2012 669 X-PGP-Fingerprint: DC 47 E6 E4 FF A6 E9 8F 93 21 E0 7D F9 12 D6 4E X-Mailer: ELM [version 2.4ME+ PL17 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk As Chris G Demetriou wrote: > Charles, re: "is a core dump on this weird file system safe"? > Actually, a good solution there might be a "NOCOREDUMP" mount flag, a > la NOSUID and NOEXEC. That has several advantages: It doesn't solve the problem where this discussion originated, but i like this idea. I've seen programs dump 80 MB core files over ethernet -- and once they do this, you cannot stop them. (Maybe you could quickly delete the file from the server, so the client would get a stale NFS file handle, but it's a crock.) -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)