From owner-freebsd-fs@FreeBSD.ORG Sun Sep 7 00:02:29 2014 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 237DB648 for ; Sun, 7 Sep 2014 00:02:29 +0000 (UTC) Received: from mail-pd0-x22d.google.com (mail-pd0-x22d.google.com [IPv6:2607:f8b0:400e:c02::22d]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id ED274172F for ; Sun, 7 Sep 2014 00:02:28 +0000 (UTC) Received: by mail-pd0-f173.google.com with SMTP id ft15so2384835pdb.32 for ; Sat, 06 Sep 2014 17:02:28 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; bh=kWy+8vuGkK+hNBi7B7JpBgFOvSov1yhcaTCLTUHDhD0=; b=x2QdunwDWtGoq/w0ZOqldPzg2moR4lYbJe3nRUZwxXw1DmSj/f8HC0Exn9h5ey+35x QzcjEBcDrHtO4I5jKZiThwrmESqUyGwCmMz89kUPiIXIkRVAYeJx9DP/0mDA6foN1vB4 pAVnX+bE+PQjUrQ8NWg3V9O43RZ0TCZB9vT5Se7f9WF1WM/MouYMbTuTJMt6kBsy8lSk R/9RF7S6oQskzR7fWbODFLzT7NTaRdwoVkIcw45tcJOPX+DxiNEkqR7L3UI889PI7fuu QFMnxjQWPLCCpPF6Nn4jdaY70yn3+xNwKfbQavhkMvIH1hwMPs+50ghEZipy/WwUw1o+ iX0g== X-Received: by 10.67.1.195 with SMTP id bi3mr34088559pad.74.1410048147972; Sat, 06 Sep 2014 17:02:27 -0700 (PDT) Received: from localhost (c-76-21-76-83.hsd1.ca.comcast.net. [76.21.76.83]) by mx.google.com with ESMTPSA id ud6sm5204047pbc.25.2014.09.06.17.02.26 for (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 06 Sep 2014 17:02:27 -0700 (PDT) Sender: Gleb Kurtsou Date: Sat, 6 Sep 2014 17:03:17 -0700 From: Gleb Kurtsou To: "Russell L. Carter" Subject: Re: pefs doesn't work as regular user Message-ID: <20140907000316.GA1888@reks> References: <540B7F42.5070803@pinyon.org> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <540B7F42.5070803@pinyon.org> User-Agent: Mutt/1.5.23 (2014-03-12) Cc: freebsd-fs@freebsd.org X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 Sep 2014 00:02:29 -0000 On (06/09/2014 14:40), Russell L. Carter wrote: > Greetings, > So this is odd. I followed the instructions at > > http://www.bsdnow.tv/tutorials/pefs > > on one system, and as a regular user it works fine. > > But I try it on my laptop, and I get the following: > > rcarter@knuth> kldstat -m pefs > Id Refs Name > 27 1 pefs > rcarter@knuth> mkdir ~/docs > rcarter@knuth> pefs addchain -f -Z ~/docs > Enter parent key passphrase: > Reenter parent key passphrase: > rcarter@knuth> pefs mount ~/docs ~/docs > pefs mount: /home/rcarter/docs: Operation not permitted > rcarter@knuth> sudo pefs mount ~/docs ~/docs > rcarter@knuth> pefs unmount ~/docs > pefs unmount: unmount of /usr/home/rcarter/docs failed: Operation not > permitted > rcarter@knuth> sudo pefs unmount ~/docs > rcarter@knuth> /bin/rm -rf ~/docs > rcarter@knuth> > > So it works as root but not as $USER. I don't see anything different > about /etc/group on either system. sysctl vfs.usermount ? File system can be mounted only by root unless sysctl vfs.usermount=1. > > Any ideas? > > Thanks, > Russell