Re: *statfs exposure of file system IDs to non-root users

• Previous message: Ian Dowse: "*statfs exposure of file system IDs to non-root users"
• In reply to: Ian Dowse: "*statfs exposure of file system IDs to non-root users"
• Next in thread: Ian Dowse: "Re: *statfs exposure of file system IDs to non-root users"
• Reply: Ian Dowse: "Re: *statfs exposure of file system IDs to non-root users"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 20 Jul 2003 05:49:02 -0700
To: Ian Dowse <iedowse@maths.tcd.ie>

Ian Dowse wrote:
> In changing umount(8) to use statfs(2), I just noticed that the
> various *statfs calls hide the filesystem IDs from non-root users:
>
> if (suser(td)) {
> bcopy(sp, &sb, sizeof(sb));
> sb.f_fsid.val[0] = sb.f_fsid.val[1] = 0;
> sp = &sb;
> }
>
> This was added in vfs_syscalls.c revision 1.61 (March 1997) and
> came from OpenBSD. I guess the reason was to hide information that
> gets used in NFS filehandles, but it doesn't do us any good now as
> you can get the real IDs from getfsstat() as a normal user. Being
> able to get and compare file system IDs is useful for umount, and
> umount can be used by non-root users when vfs.usermount is set.
>
> Is there a good reason not to delete this fsid hiding?

The real question is "Why do you need this information?".

If you can answer that, we can probably tell you a different
approach to solving your problem.

-- Terry
_______________________________________________
freebsd-arch@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-arch
To unsubscribe, send any mail to "freebsd-arch-unsubscribe@freebsd.org"

• Previous message: Ian Dowse: "*statfs exposure of file system IDs to non-root users"
• In reply to: Ian Dowse: "*statfs exposure of file system IDs to non-root users"
• Next in thread: Ian Dowse: "Re: *statfs exposure of file system IDs to non-root users"
• Reply: Ian Dowse: "Re: *statfs exposure of file system IDs to non-root users"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Allow log on locally in Default Domain Controller Policy. ... has a reason for local access to a DC. ... Even placing an FTP server on a DC, ... you can still set up your permission to avoid giving local logon access to ... >> There is no reason that a normal user needs to logon to a Domain ... (microsoft.public.cert.exam.mcse) Re: user $PATH problem ... Gene Heskett wrote: ... pathmunge'ing being done in /etc/profile, so I'm A) confused as to why it does, and B) in any event, is there a good reason to dis-allow access to /usr/local/sbin for the normal user? ... That said, I agree that /usr/sbin and /usr/local/sbin should be on amanda's path, and I've also modified my local systems so that amanda's ... (Fedora) Re: memory ram ... If you are just "a normal user on the net" there is no reason for more RAM. ... If on the other hand you download video/audio and convert those to something ... (microsoft.public.windowsxp.hardware) cant log in 2 freeBSD ?? (major problem) ... i recently installed freeBSD (am still in the process of configuring the ... beast) and for some reason it doesn't allow me to log in. ... a normal user or root after bootup. ... (comp.unix.bsd.freebsd.misc) how to unstuck samba? ... for whatever reason. ... How can I get it unmounted or unstuck? ... umount -l does ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... (Debian-User)