Re: foreign fs security features (was Re: NCPFS overhaul)

Alan Cox (alan@lxorguk.ukuu.org.uk)
Mon, 6 Apr 1998 00:40:20 +0100 (BST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: W. Bond: "/proc"
Previous message: Khimenko Victor: "Re: Printing/parport problem"
In reply to: Richard B. Johnson: "List broken?"

> The "per-user hidden file" concept is very important.
> The UFS filesystem is going to need it for Digital Unix
> filesystems with multi-level secure directories enabled.
> Novell Netware support needs it. I'd guess most "Trusted *"
> systems have the concept.

Its actually something thats quite hard to do right because of the
discovery by creation problem. That requires two people have different
files with the same name. Then a third person who can see both comes
along - what do they see. And more interestingly what the hell goes in
the dcache :)

[the discovery by creation problem]

A directory fred exists you cannot see

You do

mkdir fred

do you

a) return -EEXIST revealing the invisible space
b) create another fred

if b) what does a user with rights to see both now have to watch.

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu

Next message: W. Bond: "/proc"
Previous message: Khimenko Victor: "Re: Printing/parport problem"
In reply to: Richard B. Johnson: "List broken?"