| To: | Ethan Benson <erbenson@xxxxxxxxxx> |
|---|---|
| Subject: | Re: extended attributes security problem |
| From: | Andi Kleen <ak@xxxxxxx> |
| Date: | Sat, 6 Apr 2002 12:10:11 +0200 |
| Cc: | linux-xfs@xxxxxxxxxxx, Andreas Gruenbacher <a.gruenbacher@xxxxxxxxxxxx> |
| In-reply-to: | <20020405234103.F1524@plato.local.lan> |
| References: | <20020405234103.F1524@plato.local.lan> |
| Sender: | owner-linux-xfs@xxxxxxxxxxx |
| User-agent: | Mutt/1.3.22.1i |
On Fri, Apr 05, 2002 at 11:41:03PM -0900, Ethan Benson wrote: > > Hi, > > I have found an annoying problem with extended attributes in regards > to security. Have you actually tested this? The EA limit is 64K per inode and there is an inode space limit on the XFS fs too (normally 25% of the disk space). So you can never actually allocate more than 25% of disk space this way or even less if you use a different mkfs option. If you set the maximum inode space to 5% and always keep >5% free you should be pretty safe. -Andi |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | mtime permission, Ethan Benson |
|---|---|
| Next by Date: | Re: extended attributes security problem, Ethan Benson |
| Previous by Thread: | extended attributes security problem, Ethan Benson |
| Next by Thread: | Re: extended attributes security problem, Ethan Benson |
| Indexes: | [Date] [Thread] [Top] [All Lists] |