Access times on executables (kern/25777)
Brian Buhrow
buhrow at lothlorien.nfbcal.org
Fri May 9 10:32:21 PDT 2003
I hope you forgive my naive question, but I fail to understand how the
NFS case can fail under any circumstance. If a user tries to execute an
nfs-mounted binary which is not readable by him, doesn't the system "read"
the binary as the user root in order to execute the program, assuming the
proper execute bit is set? And, once that is done, wouldn't the system
continue to read (page) that file as root? If that doesn't work, then I
would assume that the system would fail to execute the program at all and
fail with a permission denied error.
In other words, when a user executes a remote file which has execute
permission set, but not read permission set, whose credentials does the
system use to read the file? And, wouldn't those credentials work for the
duration of the program's execution, assuming you're not running Kerberized
NFS or AFS?
-Brian
More information about the freebsd-arch
mailing list