disk space management

Alexander Larsson alexl at redhat.com
Mon Jun 20 13:57:47 UTC 2016


On mån, 2016-06-20 at 09:50 -0400, Colin Walters wrote:
> On Mon, Jun 20, 2016, at 04:26 AM, Alexander Larsson wrote:
> > 
> > but "bare"
> > repos store permissions "as-is", which means that pulling e.g. a
> > setuid
> > binary will store a setuid binary object in the repo. This isn't
> > great
> > unless you fully trust the remotes you use and is the reason i
> > moved to
> > a bare-user repo.
> We could have something like:
> 
> allow-privileged=false
> 
> in a remote config which would cause pulls that include setuid (and
> any xattrs in the system. namespace) to fail.
> 
> See also:
> https://bugzilla.gnome.org/show_bug.cgi?id=722984

Yeah, that would make sense. 

Another issue I've had is runtimes that accidentally leave the user
readable permission off somewhere, causing various problems when a user
tries to enumerate the objects or dirs. Thats generally a runtime bug,
but it still caused issues for me at various points.

-- 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 Alexander Larsson                                            Red Hat, Inc 
       alexl at redhat.com            alexander.larsson at gmail.com 
He's a suave skateboarding firefighter for the 21st century. She's a 
warm-hearted communist pearl diver from Mars. They fight crime! 





More information about the xdg-app mailing list