disk space management
Alexander Larsson
alexl at redhat.com
Mon Jun 20 13:57:47 UTC 2016
On mån, 2016-06-20 at 09:50 -0400, Colin Walters wrote:
> On Mon, Jun 20, 2016, at 04:26 AM, Alexander Larsson wrote:
> >
> > but "bare"
> > repos store permissions "as-is", which means that pulling e.g. a
> > setuid
> > binary will store a setuid binary object in the repo. This isn't
> > great
> > unless you fully trust the remotes you use and is the reason i
> > moved to
> > a bare-user repo.
> We could have something like:
>
> allow-privileged=false
>
> in a remote config which would cause pulls that include setuid (and
> any xattrs in the system. namespace) to fail.
>
> See also:
> https://bugzilla.gnome.org/show_bug.cgi?id=722984
Yeah, that would make sense.
Another issue I've had is runtimes that accidentally leave the user
readable permission off somewhere, causing various problems when a user
tries to enumerate the objects or dirs. Thats generally a runtime bug,
but it still caused issues for me at various points.
--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Alexander Larsson Red Hat, Inc
alexl at redhat.com alexander.larsson at gmail.com
He's a suave skateboarding firefighter for the 21st century. She's a
warm-hearted communist pearl diver from Mars. They fight crime!
More information about the xdg-app
mailing list