From owner-cvs-src@FreeBSD.ORG  Sat Jun 14 23:54:37 2003
Return-Path: <owner-cvs-src@FreeBSD.ORG>
Delivered-To: cvs-src@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 6880337B407; Sat, 14 Jun 2003 23:54:37 -0700 (PDT)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 1466343F75; Sat, 14 Jun 2003 23:54:37 -0700 (PDT)
	(envelope-from rwatson@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.12.6/8.12.6) with ESMTP id h5F6sa0U081324;
	Sat, 14 Jun 2003 23:54:36 -0700 (PDT)
	(envelope-from rwatson@repoman.freebsd.org)
Received: (from rwatson@localhost)
	by repoman.freebsd.org (8.12.6/8.12.6/Submit) id h5F6saPd081323;
	Sat, 14 Jun 2003 23:54:36 -0700 (PDT)
Message-Id: <200306150654.h5F6saPd081323@repoman.freebsd.org>
From: Robert Watson <rwatson@FreeBSD.org>
Date: Sat, 14 Jun 2003 23:54:36 -0700 (PDT)
To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org,
	cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Subject: cvs commit: src/usr.bin/quota quota.c
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 15 Jun 2003 06:54:38 -0000

rwatson     2003/06/14 23:54:36 PDT

  FreeBSD src repository

  Modified files:
    usr.bin/quota        quota.c 
  Log:
  Now that the kernel access control for quotactl(2) appears to work
  properly, clean up quota(1).  quota(1) has the ability to query
  quotas either directly from the kernel, or if that fails, by reading
  the quota.user or quota.group files specified for the file system
  in /etc/fstab.  The setuid bit existed solely (apparently) to let
  non-operator users query their quotas and consumption when quotas
  weren't enabled for the file system.
  
  o Remove the setuid bit from quota(1).
  
  o Remove the logic used by quota(1) when running setuid to prevent
    users from querying the quotas of other users or groups.  Note
    that this papered over previously broken kernel access control;
    if you queried directly using the system call, you could access
    some of the data "restricted" by quota(1).
  
  In the new world order, the ability to inspect the (live) quotas of
  other uids and gids via the kernel is controlled by the privilege
  requirement sysctl.  The ability to query via the file is controlled
  by the file permissions on the quota database backing files
  (root:operator, group readable by default).
  
  Revision  Changes    Path
  1.20      +0 -32     src/usr.bin/quota/quota.c