Is there any reason not to MFC the new md(4) functionality (i.e., swap
and vnode support)? With MFS and vn(4) gone in -current, I think that
the sooner users can start moving to md(4) in -stable the less cries
there will be come 5.0-RELEASE.
Additionally, the porting effort is not that great. m
> The answer there is 'sort of'. /etc/security checks all ufs partitions
> that aren't marked nosuid. if you're using anything other than UFS
> (e.g. MFS,ext2,whatever), it's not getting checked at all.
i hate to followup to my own message, but in order for the SUID checks to
be accurate, is th
> Currently on FreeBSD, resources are either free, allocated or activated.
> As I understand it, they mean approximately the following:
> - Free: unused.
> - Allocated: Resource reserved for use by device X.
> - Activated: Resource actively used by device X.
>
> This leaves somewhat of a gap
Currently on FreeBSD, resources are either free, allocated or activated.
As I understand it, they mean approximately the following:
- Free: unused.
- Allocated: Resource reserved for use by device X.
- Activated: Resource actively used by device X.
This leaves somewhat of a gap. What if bus
Index: etc/rc
===
RCS file: /stl/src/FreeBSD/src/etc/rc,v
retrieving revision 1.264
diff -u -r1.264 rc
--- etc/rc 2001/05/13 20:43:30 1.264
+++ etc/rc 2001/05/21 00:19:25
@@ -184,9 +184,14 @@
case ${bootmode} in
> Does /etc/security take filesystem mounted with:
>
> nosuid Do not allow set-user-identifier or set-group-identifier
> bits to take effect. Note: this option is worthless if a
> public available suid or sgid wrapper like suidperl(1)
> is installed on your system.
>
At 10:48 PM +0100 6/4/01, Brian Somers wrote:
>As you suspect, mounting nosuid makes /etc/security skip the
>suid checks... good for giving the security-unconscious a reason
>to fix their system :)
Works for me...
-r
--
email: [EMAIL PROTECTED]; phone: +1 650-873-7841
http://www.cfcl.com/rdm -
As you suspect, mounting nosuid makes /etc/security skip the
suid checks... good for giving the security-unconscious a reason
to fix their system :)
I was alway quite impressed with this :)
> On Mon, Jun 04, 2001 at 12:07:19PM -0700, Matthew Jacob wrote:
>
> Does /etc/security take filesystem
Hi folks,
I'm working on a port of FreeBSD pipe implementation to NetBSD. So far,
the results are pretty owesame, the new pipes are significantly faster
than the old socketpair-based ones. Good work!
However, I found couple of things I don't quite understand and would
like to clarify if this is h
Let me turn it around and say that process accounting should be only one of a
set of actions that can be emitted from the kernel and recorded somewhere.
On Mon, 4 Jun 2001, Gersh wrote:
> What about something like what process accounting does?
>
> It would be trivial to update a file (say /var
What about something like what process accounting does?
It would be trivial to update a file (say /var/db/setxid)
whenever certian chmod / fchmod actions are taken.
If it only happened when chmod/fchmod actions happened that
effected setxid stauts it should not impact performence to much either
On Mon, Jun 04, 2001 at 12:07:19PM -0700, Matthew Jacob wrote:
Does /etc/security take filesystem mounted with:
nosuid Do not allow set-user-identifier or set-group-identifier
bits to take effect. Note: this option is worthless if a
public available suid or sgid wrapper like
That's an interesting question.
A couple of ideas:
a) I wonder of RWatson's ACL stuff could help here?
b) This problem cries for a DMAPI type solution- you could have a daemon that
monitors all creats/chmods and retains knowledge of the filenames for all
SUID/SGID creats/chmods- this way /etc/
/etc/security takes a number of hours to run on my system. The problem
is that I have some very large mounted file systems and the code to look
for setuid files wants to walk through them all. I recoded the check in
Perl, but it ran at about the same speed. I have considered reworking
the code
On 03-Jun-01 Matt Dillon wrote:
> Alfred, I'm cc'ing you. If you have some time, could you check the
> vmspace_swap_count() routine? What do I need to mutex it for -current?
> For -stable I don't think there's an issue since VM objects are not
> instantiated/destroyed by interru
Hello Andrew,
I want to use the Cyclom-8Ys card for a console server (with FreeBSD
5.0). But the driver doesn't work. First I get the error "No ports
found".
After debugging I found the problem. You check in cy.c in the function
cy_units() the firmware version. If the firmware is between 0x40-0x
Mark Valentine <[EMAIL PROTECTED]> types:
> > From: [EMAIL PROTECTED] (Mike Meyer)
> > Date: Mon 4 Jun, 2001
> > Subject: Re: Fixing documented bug in env(1)
>
> > "#!/usr/bin/env foobar" will work just fine.
> At the mercy of the user's path...
If you're really worried about that, do "#!/usr/bi
> From: [EMAIL PROTECTED] (Mike Meyer)
> Date: Mon 4 Jun, 2001
> Subject: Re: Fixing documented bug in env(1)
> "#!/usr/bin/env foobar" will work just fine.
At the mercy of the user's path...
Cheers,
Mark.
--
Mark Valentine, Thuvia Labs <[EMAIL PROTECTED]>
18 matches
Mail list logo