lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date:	Wed, 17 Nov 2010 20:20:52 -0500
From:	Ted Ts'o <tytso@....edu>
To:	John Petersen <jrp@...washington.edu>
Cc:	linux-ext4@...r.kernel.org
Subject: Re: removal of grpid option from ext4

On Wed, Nov 17, 2010 at 02:45:30PM -0800, John Petersen wrote:
> The removal of this option puzzles me.  It's extremely useful in an
> academic environment like ours, where different groups of
> researchers work in shared project spaces.  I'd like to migrate our
> data partitions to ext4.  If this option is going to disappear, I
> will have to seriously consider keeping current and new project
> spaces as ext3.

So if people really insist on using it, then we'll keep it.

But one thing which I don't understand; why can't you just set the
setgid bit on the shared spaces?  This causes newly created files to
have the same group id as the directory, and newly created
subdirectories to have the set gid bit.  Set the group id at the top
directory of the project's directory hierarchy, and set the setgid
bit, and all newly created files will inherit the group id of the
directory --- and all newly created subdirectory will inherit the
group id as well as the setgid bit.

This is the System V scheme, which is much more flexible than the BSD
scheme, since you can set control whether you have the BSD behaviour
or the original System V unix behaviour, which is to always use the
primary group ID of the creator.

If you set the setgid bit on all directories (chmod -R g+s /mnt), then
you'll effectively have the same behavior as the grpid mount option.

What we may do is add a pointer to a web page with this explanation so
that people can understand there is a better alternative.  Does this
work for you?

Best regards,

						- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-ext4" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ