From owner-freebsd-fs Mon Apr 6 00:32:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA15797 for freebsd-fs-outgoing; Mon, 6 Apr 1998 00:32:15 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from parkplace.cet.co.jp (parkplace.cet.co.jp [202.32.64.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA15792 for ; Mon, 6 Apr 1998 00:32:12 -0700 (PDT) (envelope-from michaelh@cet.co.jp) Received: from localhost (michaelh@localhost) by parkplace.cet.co.jp (8.8.8/CET-v2.2) with SMTP id HAA10662; Mon, 6 Apr 1998 07:31:24 GMT Date: Mon, 6 Apr 1998 16:31:24 +0900 (JST) From: Michael Hancock To: freebsd-fs@FreeBSD.ORG, tech-kern@netbsd.org, tech@openbsd.org Subject: VFS vrele fixes Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I've created a web page for some vfs fixes I'm working on. Comments are appreciated. The changes will relieve general vnode management from all fs implementations. Taken as a whole, the scope of the changes is fairly large. http://www.freebsd.org/~mch/vfs1.html Regards, Mike Hancock To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Mon Apr 6 19:55:22 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA04955 for freebsd-fs-outgoing; Mon, 6 Apr 1998 19:55:22 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from parkplace.cet.co.jp (parkplace.cet.co.jp [202.32.64.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA04913; Mon, 6 Apr 1998 19:55:17 -0700 (PDT) (envelope-from michaelh@cet.co.jp) Received: from localhost (michaelh@localhost) by parkplace.cet.co.jp (8.8.8/CET-v2.2) with SMTP id CAA00801; Tue, 7 Apr 1998 02:54:28 GMT Date: Tue, 7 Apr 1998 11:54:28 +0900 (JST) From: Michael Hancock To: freebsd-fs@FreeBSD.ORG, tech-kern@netbsd.org, tech@openbsd.org, freebsd-smp@FreeBSD.ORG Subject: Re: VFS vrele fixes In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 6 Apr 1998, I wrote: > http://www.freebsd.org/~mch/vfs1.html If you reply publically, please trim the headers to the relevant mailing lists but keep me included because I'm not a member of all of them. Ok, I've gotten some positive comments on this. Here's a summary: 1) It's a nicer framework to experiment with alternative central vnode management systems such as per-CPU vnode pools. We can keep the existing standard implementation for UP, but distribute hot spots in an SMP version. 2) AFS people with source licenses like it because we can work around third party implementations that refuse to retain OS patches. 3) I should do locking state sooner. I'll get to it and the web page includes an implementation of vn_put() which will be used in the generic layer. Regards, Mike Hancock To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Tue Apr 7 20:24:36 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA03156 for freebsd-fs-outgoing; Tue, 7 Apr 1998 20:24:36 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from mole.fukinet.justsystem.co.jp (mole.fukinet.justsystem.co.jp [163.44.224.37]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA03148 for ; Tue, 7 Apr 1998 20:24:33 -0700 (PDT) (envelope-from Hiroyuki_Kurokawa@justsystem.co.jp) Received: from beach.b1.justsystem.co.jp ([10.4.1.34]) by mole.fukinet.justsystem.co.jp (8.8.8/8.8.7) with ESMTP id MAA28672 for ; Wed, 8 Apr 1998 12:18:35 +0900 (JST) Received: from landnt.b1.justsystem.co.jp by beach.b1.justsystem.co.jp (8.8.7/3.6Wbeta5) id MAA22956; Wed, 8 Apr 1998 12:21:57 +0900 (JST) Received: by landnt.b1.justsystem.co.jp with SMTP id FC05841 ; Wed, 8 Apr 1998 12:24:01 +0900 X-Mailer: Mozilla 4.05 [ja] (Win95; I) From: Hiroyuki_Kurokawa@justsystem.co.jp (Hiroyuki KUROKAWA ) Date: Wed, 8 Apr 1998 12:25:10 +0900 Message-ID: <352AEE15.22A57880@justsystem.co.jp> To: freebsd-fs@FreeBSD.ORG (freebsd-fs) Mime-Version: 1.0 Organization: JUSTSYSTEM Corp. X-JsMail-Priority: 5 Subject: subscribe PXI05647@niftyserve.or.jp Lines: 6 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=iso-2022-jp Content-Disposition: inline; filename="File0.txt" Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org subscribe PXI05647@niftyserve.or.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Wed Apr 8 08:12:17 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA17057 for freebsd-fs-outgoing; Wed, 8 Apr 1998 08:12:17 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from avrasya.ispro.net.tr (avrasya.ispro.net.tr [195.174.18.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA16896; Wed, 8 Apr 1998 08:10:52 -0700 (PDT) (envelope-from yurtesen@ispro.net.tr) Received: from localhost (yurtesen@localhost) by avrasya.ispro.net.tr (8.8.6/8.7.3) with SMTP id SAA04635; Wed, 8 Apr 1998 18:21:29 +0300 Date: Wed, 8 Apr 1998 18:21:29 +0300 (EET DST) From: Evren Yurtesen To: freebsd-fs@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG Subject: !!! Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org well I rebooted my system and it says to me /dev/wd0a on /: Specified device does not match mounted device. Filesystem mount, failed startup aborted what should I do??? PS. well my server is not working right now...this is a kind of serious problem for me. Evren Yurtesen ISPRO A.S. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Wed Apr 8 08:25:37 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA19594 for freebsd-fs-outgoing; Wed, 8 Apr 1998 08:25:37 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from ns1.yes.no (ns1.yes.no [195.119.24.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA19445; Wed, 8 Apr 1998 08:25:20 -0700 (PDT) (envelope-from eivind@bitbox.follo.net) Received: from bitbox.follo.net (bitbox.follo.net [194.198.43.36]) by ns1.yes.no (8.8.7/8.8.7) with ESMTP id PAA23159; Wed, 8 Apr 1998 15:24:52 GMT Received: (from eivind@localhost) by bitbox.follo.net (8.8.8/8.8.6) id RAA14738; Wed, 8 Apr 1998 17:24:52 +0200 (MET DST) Message-ID: <19980408172452.50210@follo.net> Date: Wed, 8 Apr 1998 17:24:52 +0200 From: Eivind Eklund To: Evren Yurtesen , freebsd-fs@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG Subject: Re: !!! References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i Mailfollowup-to: questions@freebsd.org In-Reply-To: ; from Evren Yurtesen on Wed, Apr 08, 1998 at 06:21:29PM +0300 Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Apr 08, 1998 at 06:21:29PM +0300, Evren Yurtesen wrote: > well I rebooted my system and it says to me > > /dev/wd0a on /: Specified device does not match mounted device. > Filesystem mount, failed startup aborted > > what should I do??? Either rollback your kernel or upgrade 'mount'. I'd boot with my old kernel, then upgrade mount, then re-boot with the new kernel. > PS. well my server is not working right now...this is a kind of serious > problem for me. That's not an excuse to crosspost. I've set Mailfollowup-to: questions. Eivind. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Wed Apr 8 08:53:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA25277 for freebsd-fs-outgoing; Wed, 8 Apr 1998 08:53:15 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from user.xtdl.com (user.xtdl.com [206.25.228.20]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA25228; Wed, 8 Apr 1998 08:52:58 -0700 (PDT) (envelope-from sderdau@xtdl.com) Received: from user.xtdl.com (user.xtdl.com [206.25.228.20]) by user.xtdl.com (8.8.8/8.6.9) with SMTP id LAA20356; Wed, 8 Apr 1998 11:57:27 -0400 (EDT) Date: Wed, 8 Apr 1998 11:57:26 -0400 (EDT) From: "Stephen A. Derdau" To: Evren Yurtesen cc: freebsd-fs@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG Subject: Re: !!! In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I had this problem when I rebuilt 2.2.6 from 2.2.25 2.2.6 changes the name of the slice to it's truc slice name I assume you also upgraded.... AnYWAY YOU MAY Also want to wait for someone elses reply since I AM A NEWBIE TO ALL OF THIS. It worked for me though ok boot old kernel.old cd /etc vi fstab change /dev/wd0a to /dev/wd0s2a however you want to check to see if such a device exists. cd /etc sh MAKEDEV wd0s2a then when you reboot you should be able to mount / I'll cc you some info I sent yesterday regarding this ******* ******* AGAIN I AM NOT AN EXPERT AND STILL LEARNING ***** Thank You ! Stephen A. Derdau "So What if it is wrong. I am getting closer to the right answer!" "If I had a nickle for every time I was wrrong , I would want a quarter instead. :-)" On Wed, 8 Apr 1998, Evren Yurtesen wrote: > well I rebooted my system and it says to me > > /dev/wd0a on /: Specified device does not match mounted device. > Filesystem mount, failed startup aborted > > what should I do??? > > PS. well my server is not working right now...this is a kind of serious > problem for me. > > Evren Yurtesen > ISPRO A.S. > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Wed Apr 8 10:23:01 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA16049 for freebsd-fs-outgoing; Wed, 8 Apr 1998 10:23:01 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from public1.guangzhou.gd.cn (public1.gz.gd.cn [202.96.128.111]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA16038 for ; Wed, 8 Apr 1998 10:22:54 -0700 (PDT) (envelope-from gzxjzhg@public1.guangzhou.gd.cn) Received: from ntserver (max2-156.guangzhou.gd.cn [202.96.184.156]) by public1.guangzhou.gd.cn (8.8.5/8.8.5) with SMTP id BAA29955 for ; Thu, 9 Apr 1998 01:20:43 +0900 (CDT) Message-ID: <352BB2F2.131B@public1.guangzhou.gd.cn> Date: Thu, 09 Apr 1998 01:25:06 +0800 From: John Tse Reply-To: gzxjzhg@public1.guangzhou.gd.cn Organization: SURUN Electronics Co. Ltd. X-Mailer: Mozilla 3.0 (WinNT; I) MIME-Version: 1.0 To: freebsd-fs@FreeBSD.ORG Subject: unsubscribe Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org unsubscribe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Fri Apr 10 07:54:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA19904 for freebsd-fs-outgoing; Fri, 10 Apr 1998 07:54:55 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from mail.cs.tu-berlin.de (root@mail.cs.tu-berlin.de [130.149.17.13]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA19678 for ; Fri, 10 Apr 1998 07:54:11 -0700 (PDT) (envelope-from wosch@cs.tu-berlin.de) Received: from panke.panke.de (anonymous233.ppp.cs.tu-berlin.de [130.149.17.233]) by mail.cs.tu-berlin.de (8.8.8/8.8.8) with ESMTP id QAA17282; Fri, 10 Apr 1998 16:48:08 +0200 (MET DST) Received: (from wosch@localhost) by panke.panke.de (8.8.5/8.6.12) id QAA00959; Fri, 10 Apr 1998 16:45:06 +0200 (MET DST) Message-ID: <19980410164505.27668@panke.de> Date: Fri, 10 Apr 1998 16:45:05 +0200 From: Wolfram Schneider To: Andi Kleen Cc: freebsd-fs@FreeBSD.ORG Subject: Re: cvs commit: src/sbin/mount mntopts.h mount.8 mount.c src/sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c src/sys/sys mount.h References: <199804081832.LAA04184@freefall.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.79 In-Reply-To: ; from Andi Kleen on Fri, Apr 10, 1998 at 01:41:18PM +0200 Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 1998-04-10 13:41:18 +0200, Andi Kleen wrote: > > wosch 1998/04/08 11:32:00 PDT > > Modified files: > > sbin/mount mntopts.h mount.8 mount.c > > sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c > > sys/sys mount.h > > Log: > > New mount option nosymfollow. If enabled, the kernel lookup() > > function will not follow symbolic links on the mounted > > file system and return EACCES (Permission denied). > > Note that this is not enough alone to prevent /tmp races. A malicious > user can still use a named pipe to feed the victim changed data. [moved to freebsd-fs] I can add a nonamedpipe option ;-) A named pipe race is much harder to implement than a symlink race. How do you avoid dead locks? -- Wolfram Schneider http://www.freebsd.org/~wosch/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Fri Apr 10 08:15:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA24721 for freebsd-fs-outgoing; Fri, 10 Apr 1998 08:15:15 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from fred.muc.de (noidentity@dial018.lrz-muenchen.de [129.187.24.18]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id IAA24716 for ; Fri, 10 Apr 1998 08:15:12 -0700 (PDT) (envelope-from andi@fred.muc.de) Received: (qmail 2659 invoked by uid 500); 10 Apr 1998 15:14:54 -0000 Message-ID: <19980410171454.39443@fred.muc.de> Date: Fri, 10 Apr 1998 17:14:54 +0200 From: ak@muc.de To: Wolfram Schneider , Andi Kleen Cc: freebsd-fs@FreeBSD.ORG Subject: Re: cvs commit: src/sbin/mount mntopts.h mount.8 mount.c src/sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c src/sys/sys mount.h References: <199804081832.LAA04184@freefall.freebsd.org> <19980410164505.27668@panke.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i In-Reply-To: <19980410164505.27668@panke.de>; from Wolfram Schneider on Fri, Apr 10, 1998 at 04:45:05PM +0200 Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Apr 10, 1998 at 04:45:05PM +0200, Wolfram Schneider wrote: > On 1998-04-10 13:41:18 +0200, Andi Kleen wrote: > > > wosch 1998/04/08 11:32:00 PDT > > > Modified files: > > > sbin/mount mntopts.h mount.8 mount.c > > > sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c > > > sys/sys mount.h > > > Log: > > > New mount option nosymfollow. If enabled, the kernel lookup() > > > function will not follow symbolic links on the mounted > > > file system and return EACCES (Permission denied). > > > > Note that this is not enough alone to prevent /tmp races. A malicious > > user can still use a named pipe to feed the victim changed data. > > [moved to freebsd-fs] > > I can add a nonamedpipe option ;-) Or include that with nodev (or does it do that already?) > > A named pipe race is much harder to implement than a symlink race. > How do you avoid dead locks? What deadlocks? the exploit will be "single threaded" but I don't think there are deadlocks. It is possible, that is what counts. Just use O_CREAT|O_EXCL always. -A. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Fri Apr 10 12:42:57 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA18441 for freebsd-fs-outgoing; Fri, 10 Apr 1998 12:42:57 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from mail.cs.tu-berlin.de (root@mail.cs.tu-berlin.de [130.149.17.13]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA18433 for ; Fri, 10 Apr 1998 12:42:51 -0700 (PDT) (envelope-from wosch@cs.tu-berlin.de) Received: from panke.panke.de (anonymous234.ppp.cs.tu-berlin.de [130.149.17.234]) by mail.cs.tu-berlin.de (8.8.8/8.8.8) with ESMTP id VAA05854; Fri, 10 Apr 1998 21:37:45 +0200 (MET DST) Received: (from wosch@localhost) by panke.panke.de (8.8.5/8.6.12) id VAA01377; Fri, 10 Apr 1998 21:33:27 +0200 (MET DST) Message-ID: <19980410213327.22843@panke.de> Date: Fri, 10 Apr 1998 21:33:27 +0200 From: Wolfram Schneider To: ak@muc.de Cc: freebsd-fs@FreeBSD.ORG Subject: Re: cvs commit: src/sbin/mount mntopts.h mount.8 mount.c src/sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c src/sys/sys mount.h References: <199804081832.LAA04184@freefall.freebsd.org> <19980410164505.27668@panke.de> <19980410171454.39443@fred.muc.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.79 In-Reply-To: <19980410171454.39443@fred.muc.de>; from ak@muc.de on Fri, Apr 10, 1998 at 05:14:54PM +0200 Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 1998-04-10 17:14:54 +0200, ak@muc.de wrote: > > I can add a nonamedpipe option ;-) > Or include that with nodev (or does it do that already?) nodev don't disable named pipes. > > A named pipe race is much harder to implement than a symlink race. > > How do you avoid dead locks? > What deadlocks? the exploit will be "single threaded" but I don't think > there are deadlocks. It is possible, that is what counts. Possible dead lock: A writes 2K into the named pipe B append 8K into the named pipe A read 2K from the named pipe A want write 2K into the named pipe, but B not finished writing. A wait for B and B wait for A .... > Just use O_CREAT|O_EXCL always. -- Wolfram Schneider http://www.freebsd.org/~wosch/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message From owner-freebsd-fs Sat Apr 11 07:33:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA06192 for freebsd-fs-outgoing; Sat, 11 Apr 1998 07:33:12 -0700 (PDT) (envelope-from owner-freebsd-fs@FreeBSD.ORG) Received: from mail.cs.tu-berlin.de (root@mail.cs.tu-berlin.de [130.149.17.13]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA06187 for ; Sat, 11 Apr 1998 07:33:10 -0700 (PDT) (envelope-from wosch@cs.tu-berlin.de) Received: from panke.panke.de (anonymous213.ppp.cs.tu-berlin.de [130.149.17.213]) by mail.cs.tu-berlin.de (8.8.8/8.8.8) with ESMTP id QAA05410; Sat, 11 Apr 1998 16:28:27 +0200 (MET DST) Received: (from wosch@localhost) by panke.panke.de (8.8.5/8.6.12) id OAA01011; Sat, 11 Apr 1998 14:51:57 +0200 (MET DST) To: =?koi8-r?B?4c7E0sXKIP7F0s7P1w==?= Cc: freebsd-fs@FreeBSD.ORG Subject: Re: cvs commit: src/sbin/mount mntopts.h mount.8 mount.c src/sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c src/sys/sys mount.h References: <199804081832.LAA04184@freefall.freebsd.org> <19980408224834.38476@nagual.pp.ru> From: Wolfram Schneider Date: 11 Apr 1998 14:51:55 +0200 In-Reply-To: =?koi8-r?B?4c7E0sXKIP7F0s7P1w==?='s message of Wed, 8 Apr 1998 22:48:34 +0400 Message-ID: Lines: 28 Sender: owner-freebsd-fs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org =?koi8-r?B?4c7E0sXKIP7F0s7P1w==?= writes: > On Wed, Apr 08, 1998 at 11:32:00AM -0700, Wolfram Schneider wrote: > > wosch 1998/04/08 11:32:00 PDT > > Modified files: > > sbin/mount mntopts.h mount.8 mount.c > > sys/kern vfs_lookup.c vfs_syscalls.c vfs_vnops.c > > sys/sys mount.h > > Log: > > New mount option nosymfollow. If enabled, the kernel lookup() > > function will not follow symbolic links on the mounted > > file system and return EACCES (Permission denied). > > Why? [moved to freebsd-fs] A security workaround. There was a discussion in freebsd-fs some month ago about this patch and nobody objected. > If you care of /tmp, it can be easily overwritted with TMPDIR env. > variable as peter points. Correctly written programs are not the problem ;-) The *thousends* poorly implemented programs are a security risk. How do you want fix a binary only package, e.g. ORACLE? -- Wolfram Schneider http://www.freebsd.org/~wosch/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-fs" in the body of the message