Date: Mon, 8 Apr 2013 13:49:02 +0400 From: Lev Serebryakov <lev@FreeBSD.org> To: Jeremy Chadwick <jdc@koitsu.org> Cc: freebsd-fs@freebsd.org Subject: Re: ZFS snapshots and daily security checks Message-ID: <82684806.20130408134902@serebryakov.spb.ru> In-Reply-To: <20130408093017.GA76398@icarus.home.lan> References: <20130408005438.GA66727@icarus.home.lan> <1504594172.20130408114200@serebryakov.spb.ru> <20130408080738.GA73905@icarus.home.lan> <1884594284.20130408125002@serebryakov.spb.ru> <20130408093017.GA76398@icarus.home.lan>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, Jeremy. You wrote 8 =D0=B0=D0=BF=D1=80=D0=B5=D0=BB=D1=8F 2013 =D0=B3., 13:30:17: JC> My theory is that your "pool" filesystem has the snapdir property as JC> visible, and therefore all filesystems under pool (ex. "pool/home") JC> would inherit the value. Nope :) It is "hidden, default" JC> Looking at the ZFS code, hidden **is** the default, even in r244958 JC> (which you're running): JC> http://svnweb.freebsd.org/base/stable/9/sys/cddl/contrib/opensolaris/co= mmon/zfs/zfs_prop.c?view=3Dannotate JC> See line 218. The 3rd parameter, ZFS_SNAPDIR_HIDDEN, is what defines JC> the default value. Pool and FS was created long time ago :) Ok, it is not very interesting, why it was set to "visible". Now we understand why snapshots were "mounted" and why only `mount -p' show them. Last question is how to make them mounted (to allow users use them) and don't have bogus 25 line difference (24 hourly snapshots and 1 daily snapshot) in each daily security report... It looks like, I need simply add properly crafted "grep -v" to security script --=20 // Black Lion AKA Lev Serebryakov <lev@FreeBSD.org>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?82684806.20130408134902>