Date: Mon, 24 Nov 2003 23:59:50 +0000 From: Ceri Davies <ceri@submonkey.net> To: Rayson Ho <raysonlogin@yahoo.com> Cc: freebsd-hackers@freebsd.org Subject: Re: "secure" file flag? Message-ID: <20031124235950.GH66785@submonkey.net> In-Reply-To: <20031119003133.18473.qmail@web11404.mail.yahoo.com> References: <20031119003133.18473.qmail@web11404.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--9uNR01GrImESOVvg Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Nov 18, 2003 at 04:31:32PM -0800, Rayson Ho wrote: > I am wondering if it is useful to have a "secure" file flag?? >=20 > The secure file flag will be set for files that contain sensitive data. > Then the OS will take special care when operating on those "secure" > files. >=20 > e.g. when deleting a "secure" file, the OS will overwrite the file with > random data. It would also be useful to have a "noexport" flag, which would have the NFS code refuse to send it over the network. I could personally use this for setting on my PGP and SSH keys, while exporting the rest of /home. I did look at implementing this, but couldn't find the "correct" place to do the check for the flag. Any pointers for a kernel newbie? Ceri --=20 --9uNR01GrImESOVvg Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/wpt2ocfcwTS3JF8RAgA0AKCKsb7lXoMVUXuTYkmpMi+bLieCMQCfQhkK bAv5t7mx4wjwlDdy0dE2scA= =5x5g -----END PGP SIGNATURE----- --9uNR01GrImESOVvg--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031124235950.GH66785>