From owner-freebsd-fs@freebsd.org  Sat Nov  9 13:50:43 2019
Return-Path: <owner-freebsd-fs@freebsd.org>
Delivered-To: freebsd-fs@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 48D4D1AA68C
 for <freebsd-fs@mailman.nyi.freebsd.org>; Sat,  9 Nov 2019 13:50:43 +0000 (UTC)
 (envelope-from jbe-mlist@magnetkern.de)
Received: from sapphire.magnetkern.de (sapphire.magnetkern.de
 [185.228.139.199])
 by mx1.freebsd.org (Postfix) with ESMTP id 479JSK6nfVz3HXT;
 Sat,  9 Nov 2019 13:50:41 +0000 (UTC)
 (envelope-from jbe-mlist@magnetkern.de)
Received: from titanium (p57A35420.dip0.t-ipconnect.de [87.163.84.32])
 by sapphire.magnetkern.de (Postfix) with ESMTPSA id 1FAD4AC9C;
 Sat,  9 Nov 2019 13:50:24 +0000 (UTC)
Date: Sat, 9 Nov 2019 14:50:23 +0100
From: Jan Behrens <jbe-mlist@magnetkern.de>
To: Andriy Gapon <avg@FreeBSD.org>
Cc: freebsd-fs@FreeBSD.org
Subject: Re: ZFS snapdir readability (Crosspost)
Message-Id: <20191109145023.688cfa3e4b8271399814c4d2@magnetkern.de>
In-Reply-To: <ffc81c68-c2a5-0953-be02-09edc74c877b@FreeBSD.org>
References: <20191107004635.c6d2e7d464d3d556a0d87465@magnetkern.de>
 <CAOtMX2huHZcXHH+=3Bx7hX_p9udJ2acOX+ZL8vW=pjqbe6mOAA@mail.gmail.com>
 <20191107012027.9639f3a9dda1941518358a52@magnetkern.de>
 <0a823048-d191-72e8-e20b-0491ebd4ea4a@peak.org>
 <20191107033622.16414272ae743d50f75786ec@magnetkern.de>
 <46343d6b-b614-2942-a28c-1ba8f28dd5a0@FreeBSD.org>
 <20191108125226.4ffebc252e69c6cfa3c82165@magnetkern.de>
 <ffc81c68-c2a5-0953-be02-09edc74c877b@FreeBSD.org>
X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Rspamd-Queue-Id: 479JSK6nfVz3HXT
X-Spamd-Bar: -
Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none;
 spf=pass (mx1.freebsd.org: domain of jbe-mlist@magnetkern.de designates
 185.228.139.199 as permitted sender) smtp.mailfrom=jbe-mlist@magnetkern.de
X-Spamd-Result: default: False [-1.21 / 15.00]; ARC_NA(0.00)[];
 RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_COUNT_TWO(0.00)[2];
 NEURAL_HAM_MEDIUM(-0.80)[-0.801,0]; FROM_HAS_DN(0.00)[];
 TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+mx];
 TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain];
 MV_CASE(0.50)[]; DMARC_NA(0.00)[magnetkern.de];
 NEURAL_HAM_LONG(-0.99)[-0.990,0];
 IP_SCORE(0.28)[ipnet: 185.228.136.0/22(1.98), asn: 197540(-0.57), country:
 DE(-0.01)]; RCPT_COUNT_TWO(0.00)[2]; RCVD_NO_TLS_LAST(0.10)[];
 RECEIVED_SPAMHAUS_PBL(0.00)[32.84.163.87.khpj7ygk5idzvmvt5x4ziurxhy.zen.dq.spamhaus.net
 : 127.0.0.10]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+];
 ASN(0.00)[asn:197540, ipnet:185.228.136.0/22, country:DE];
 MID_RHS_MATCH_FROM(0.00)[]; FROM_EQ_ENVFROM(0.00)[]
X-BeenThere: freebsd-fs@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Filesystems <freebsd-fs.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-fs>,
 <mailto:freebsd-fs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-fs/>
List-Post: <mailto:freebsd-fs@freebsd.org>
List-Help: <mailto:freebsd-fs-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-fs>,
 <mailto:freebsd-fs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 09 Nov 2019 13:50:43 -0000

On Fri, 8 Nov 2019 15:19:07 +0200
Andriy Gapon <avg@FreeBSD.org> wrote:

> On 08/11/2019 13:52, Jan Behrens wrote:
> > [...] I believe adding an option to restrict
> > readability of .zfs/snapdir to the owner of the root would
> > significantly improve security, [...]
> 
> I would not object to having something like snapdirmode property.
> I think that it's reasonable.
> 
> -- 
> Andriy Gapon

Is it difficult to implement that? I assume it would require a new zfs
pool feature to create such a new property?

Regards,
Jan