|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [suse-security] quota problem with user-nfs
From: Olaf Kirch (okir
suse.de)
Date: Wed Aug 13 2003 - 09:03:59 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, Aug 13, 2003 at 03:41:02PM +0200, Martin Walter wrote:
> yes. with and without rpc.rquotad, makes no difference.
>
> any idea?
The problem is most likely that the user space nfsd runs with full root
capabilities, and the disk quota stuff ignores any quota hard limits if
the process has CAP_SYS_RESOURCE.
unfsd should probably turn off CAP_SYS_RESOURCE (or maybe even all caps)
while accessing the file system.
Olaf
--
Olaf Kirch | Anyone who has had to work with X.509 has probably
okirsuse.de | experienced what can best be described as
---------------+ ISO water torture. -- Peter Gutmann
--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]