[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Secure rsync setup, bind-mount ro

On Mon, Dec 18, 2006 at 04:50:51PM +0100, Lupe Christoph wrote:
> when I mean bind mounts. No, they are just an aliasing mechanism.
 Nope, they're not:
ghost:/fs# mkdir testro
ghost:/fs# mount -o bind,ro /tmp/ /fs/testro/
ghost:/fs# touch testro/q
touch: cannot touch `testro/q': Read-only file system
ghost:/fs# touch /tmp/q
ghost:/fs# ls -l testro/q 
-rw-r--r-- 1 root root 0 2006-12-19 08:36 testro/q
ghost:/fs# touch testro/q
touch: cannot touch `testro/q': Read-only file system

 it's just that sometime in the past, someone took a shortcut and made
bind-mounts ignore the options, and now it seems that noone can explain to
Linus that that was an ommision, and patches fixing that get thrown out
because "noone would use that", and "that was linux behaviour for years 
and noone complained yet".

 The patches were maintained as seperate 'bind mount extensions/bme'
project here: http://www.13thfloor.at/patches/
and now they're part of vserver project, http://linux-vserver.org/

-- 
Dariush Pietrzak,
Key fingerprint = 40D0 9FFB 9939 7320 8294  05E0 BCC7 02C4 75CC 50D9
Reply to: