[Bug 284670] Handbook fails to list limitations of `zfs allow mount`

Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284670] Handbook fails to list limitations of `zfs allow mount`"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sun, 09 Feb 2025 03:02:51 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=284670

            Bug ID: 284670
           Summary: Handbook fails to list limitations of `zfs allow
                    mount`
           Product: Documentation
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Books & Articles
          Assignee: doc@FreeBSD.org
          Reporter: jeff+freebsd@wagsky.com

https://docs.freebsd.org/en/books/handbook/zfs/#zfs-send-ssh

Even after delegating `mount` along with `recv` and `create`, an unprivileged
user can't mount a ZFS file system unless at least 

- `vfs.usermount` is set to 1

- The user owns the directory onto which the filesystem would be mounted

Using `zfs recv -u ...` does not mitigate this limitation.

From a practical perspective, `zfs recv` seems as though it would only work in
very limited situations (user owns all mount points, including those of child
filesystems) and only if the security implications of opening up
`vfs.usermount` are acceptable.

-- 
You are receiving this mail because:
You are the assignee for the bug.