Date: Mon, 30 Aug 1999 12:13:04 -0700 (PDT) From: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net> To: dillon@apollo.backplane.com (Matthew Dillon) Cc: imp@village.org (Warner Losh), bde@zeta.org.au (Bruce Evans), dynamo@ime.net, security@FreeBSD.ORG Subject: Re: Not sure if you got it... Message-ID: <199908301913.MAA66330@gndrsh.dnsmgr.net> In-Reply-To: <199908301812.LAA16174@apollo.backplane.com> from Matthew Dillon at "Aug 30, 1999 11:12:05 am"
next in thread | previous in thread | raw e-mail | index | archive | help
>
> :>
> :> Any objections to chflags nouflags going into the tree, modulo
> :> problems with the actual code that does it?
> :
> :I don't have a problem with that.
> :
> :>
> :> I'd also like to have a new flag to rm. -F. One -F will be
> :> chflags nouflags foo ; rm -f foo
> :> while two -F will be
> :> chflags 0 foo ; rm -f foo
> :
> :I have a problem with this, it means updating 1 more chunk of code
> :should the set of items in uflags change.
> :
> :--
> :Rod Grimes - KD7CAX - (RWG25) rgrimes@gndrsh.dnsmgr.net
>
> Maybe what we need to do is allow a umask to be set for the flag bits
> in the mount. So, for example, you would be able to specify which flag
> bits are allowed to be set on a mount-by-mount basis (both user and
> system). Otherwise we may wind up spending the next year trying to
> 'fix' security holes in scripts related to the flag bits.
Hummmm.. or add a flag bit that says flags can't be set below this
directory level? Domain/OS can do a similiar thing with it's ACL's.
Mount points are too cource grained for this problem, /var/tmp is
often just a part of /var. I might want append only flags on much
of /var/log, but disallow flags in /var/{run,tmp}.
--
Rod Grimes - KD7CAX - (RWG25) rgrimes@gndrsh.dnsmgr.net
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199908301913.MAA66330>