Re: [RFC][PATCH] Generic fallback for security xattrs

From: Casey Schaufler (casey@schaufler-ca.com)
Date: Fri Jul 15 2005 - 15:09:46 PDT


--- Chris Wright <chrisw@private> wrote:


> The question is
> what to do for disk based filesystems that will
> never support xattrs,

The answer, of course, is to fix them.
It is possible to support extended attributes
without changing the disk format. I've
attached an old Unix design document that
describes one way it has been done.

> and ram based filesystems.

These require care, as there needs to be
some scheme to determine what attributes
a particular generated object should have.
But that's already being done for the
mode bits and ownership. If there are
exceptions it seems the Linux mount scheme
has everything you need to pass that along.


Casey Schaufler
casey@schaufler-ca.com

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 




This archive was generated by hypermail 2.1.3 : Fri Jul 15 2005 - 15:10:55 PDT