Starting Point.

Robert Watson rwatson at FreeBSD.org
Mon May 10 00:00:40 GMT 2004 

On Fri, 7 May 2004, Wade Klaver wrote:

> Well, after the whole backup/newfs/restore deal, things seem to be working a 
> lot better.  That ls -l error appears to be the result of using UFS_ACL on a 
> UFS partition that is not properly configured, so is it still worth 
> reporting?  
>   I did notice one thing: Shells that implement tab completion do not 
> recognize a file as executable if execute permissions are granted only via 
> the ACLs.  I guess this is a shell thing?  I am not sure how they glean this 
> information.

Hmm.  Well, there are a number of ways that a shell could calculate that a
file is executable.  One of them is to use the access(2)/eaccess(2), which
asks the kernel to calculate the current process's effective rights for a
file.  To figure out where things are going wrong, you could try a few
things.  First off, try using the access(1) command to test for execute
rights on the target script.  If that works right, we should take a look
at the shell's implementation of tab completion.

>   Previously posted question RE: an archive for this list: is there one?
>   Again, any reading recommendations would be appreciated.

Hmm.  It sounds like the archive provided by securityfocus isn't currently
working.  I'll look into setting up one on the TrustedBSD web page
directly.

>   RE: early adopting, if there's something here to break, trust me, I will 
> break it.  Wouldn't be the first time. :)

That is not a problem from my perspective, as you seem quite willing to
help figure out what went wrong :-).

Robert N M Watson             FreeBSD Core Team, TrustedBSD Projects
robert at fledge.watson.org      Senior Research Scientist, McAfee Research



>  -Wade
> On May 6, 2004 11:45, Robert Watson wrote:
> > On Thu, 6 May 2004, Wade Klaver wrote:
> > > So, once I newfs with UFS2, am I correct in understanding that I can
> > > remove the UFS_EXTATTR_AUTOSTART and UFS_EXTATTR options from my kernel?
> > > Do they have any function beyond ACL support for UFS1?
> >
> > That is correct: those options only apply to UFS1, and if you have no UFS1
> > file systems where you are using extended attributes, they are not
> > required.
> >
> > > Your prediction regarding the 5.0 install was correct, by the way.
> >
> > One of the perils of being an early adopter, I'm afraid...  But that said,
> > early adopters go much appreciated around here and we encourage you to do
> > it more :-).
> >
> > Thanks,
> >
> > Robert N M Watson             FreeBSD Core Team, TrustedBSD Projects
> > robert at fledge.watson.org      Senior Research Scientist, McAfee Research
> >
> 
> -- 
> Wade Klaver
> Wavefire Technologies Corporation
> GPG Public Key at http://archeron.wavefire.com
> 
> /"\   ASCII Ribbon Campaign  .
> \ / - NO HTML/RTF in e-mail  .
>  X  - NO Word docs in e-mail .
> / \ -----------------------------------------------------------------
> 


To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-discuss" in the body of the message

More information about the trustedbsd-discuss mailing list