On Wed, 2003-06-25 at 15:41, Marek Habersack wrote:
> On Wed, Jun 25, 2003 at 07:51:43AM -0500, Steve Lord scribbled:
> > > For me both of the described situations seem to be a bug, but I mig=
> > > unaware of the rationale behind the functionality. If this is suppose=
d to be
> > > that way, maybe at least it would be better to default restrict_chown=
> > > enabled initially? The behavior with restrict_chown is totally differ=
> > > what users/administrators are used to and, as shown in the debian pac=
> > > build case, it might cause problems in usual situations. Also the quo=
> > > issue is likely to be an excellent tool for local DoS.
> > > So, am I wrong in thinking that it's a bug (or at least the quota p=
> > > it) or not?
> > Sorry about this, the defaults for the systunes have been messed up
> > recently. This is supposed to be on by default, irix_sgid_inherit
> > is on, but should be off by default.=20
> > You can switch the behavior with /proc/sys/fs/xfs/restrict_chown
> > and irix_sgid_inherit.
> Yep, that's what I did. I was just caught by surprise discovering the new
> behavior :) and it if it was to be the default, it would have created a b=
> problem for distributions compatibility-wise.
> > You can also edit xfs_globals.c to switch the default at boot time.
> > We will switch it back in the next update to Linus.
> Great, that's good enough.
> > As for the quota operation, the normal chown situation is going
> > from root to another id, and in that case, you want the quota to
> > go to the end user.=20
another question is why is this a filesystem specific option and not a
generic option ?
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
-----END PGP SIGNATURE-----