Date: Sat, 9 Nov 2019 14:50:23 +0100 From: Jan Behrens <jbe-mlist@magnetkern.de> To: Andriy Gapon <avg@FreeBSD.org> Cc: freebsd-fs@FreeBSD.org Subject: Re: ZFS snapdir readability (Crosspost) Message-ID: <20191109145023.688cfa3e4b8271399814c4d2@magnetkern.de> In-Reply-To: <ffc81c68-c2a5-0953-be02-09edc74c877b@FreeBSD.org> References: <20191107004635.c6d2e7d464d3d556a0d87465@magnetkern.de> <CAOtMX2huHZcXHH%2B=3Bx7hX_p9udJ2acOX%2BZL8vW=pjqbe6mOAA@mail.gmail.com> <20191107012027.9639f3a9dda1941518358a52@magnetkern.de> <0a823048-d191-72e8-e20b-0491ebd4ea4a@peak.org> <20191107033622.16414272ae743d50f75786ec@magnetkern.de> <46343d6b-b614-2942-a28c-1ba8f28dd5a0@FreeBSD.org> <20191108125226.4ffebc252e69c6cfa3c82165@magnetkern.de> <ffc81c68-c2a5-0953-be02-09edc74c877b@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 8 Nov 2019 15:19:07 +0200 Andriy Gapon <avg@FreeBSD.org> wrote: > On 08/11/2019 13:52, Jan Behrens wrote: > > [...] I believe adding an option to restrict > > readability of .zfs/snapdir to the owner of the root would > > significantly improve security, [...] > > I would not object to having something like snapdirmode property. > I think that it's reasonable. > > -- > Andriy Gapon Is it difficult to implement that? I assume it would require a new zfs pool feature to create such a new property? Regards, Jan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20191109145023.688cfa3e4b8271399814c4d2>