> > > > > And for either version of NFS, if the uid and gid are non-zero, and > > > the permission bits indicate that an access is permitted, then the > > > client does not consult the server for permission. > > > > Where's that? I see no such check. > > /* > * Trust UNIX mode bits except: > * > * 1) When override capabilities may have been invoked > * 2) When root squashing may be involved > * 3) When ACLs may overturn a negative answer */ > if (!capable(CAP_DAC_OVERRIDE) && !capable(CAP_DAC_READ_SEARCH) > && (current->fsuid != 0) && (current->fsgid != 0) > && error != -EACCES) > goto out;
Still can't find it :) Which kernel? Which file? Thanks, Miklos - To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
