From: jim owens <jowens@hp.com>
To: Joe Peterson <lavajoe@gentoo.org>
Cc: linux-btrfs@vger.kernel.org
Subject: Re: [PATCH] COW and checksumming ioctls
Date: Fri, 20 Jun 2008 15:44:25 -0400 [thread overview]
Message-ID: <485C0899.1080203@hp.com> (raw)
In-Reply-To: <485BC7AF.6020708@gentoo.org>
Joe Peterson wrote:
> Then again, I could almost see that perhaps making the setting based on
> something at the subvolume level (not per-file level) might be even
> better for that case.
...
> Sure, that's true. I am not saying that we need to protect users from
> themselves, as long as there is a way to clearly see what the settings
> are (so a user/admin can verify the state, e.g.). I guess my main
> concern would be if it is relatively easy for this to go completely
> unnoticed. Also, would it be only root who could change such a setting?
It is important to have the per-file granularity. I agree with
you that being able to apply this to "all members of this set",
where the "set" is whatever is practical for btrfs is a nice
ease-of-use feature.
The ability to do the change is probably based on "right to
change file attributes", which depends on security policy,
but it should not be designed as a root-only restriction.
As I think someone already said (or hinted), a feature-lockout
can be designed so the admnin can do that on some "set" for
those who are paranoid.
Again for those who are paranoid, making these auditable events
(I'm probably not using the right linux term) solves the need
to know something like checksum-off has occured.
jim
next prev parent reply other threads:[~2008-06-20 19:44 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-06-20 0:26 [PATCH] COW and checksumming ioctls Mingming
2008-06-20 5:23 ` Zach Brown
2008-06-20 14:01 ` Joe Peterson
2008-06-20 13:58 ` Josef Bacik
2008-06-20 15:07 ` Joe Peterson
2008-06-20 16:37 ` Chris Mason
2008-06-21 6:07 ` Joe Peterson
2008-06-20 19:44 ` jim owens [this message]
2008-06-21 5:59 ` Joe Peterson
2008-06-21 7:27 ` Christoph Hellwig
2008-06-22 14:10 ` Chris Mason
2008-06-22 18:13 ` Joshua J. Berry
2008-06-30 18:38 ` Christoph Hellwig
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=485C0899.1080203@hp.com \
--to=jowens@hp.com \
--cc=lavajoe@gentoo.org \
--cc=linux-btrfs@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox