Re: Tough question for oracle DBAs/Solaris Admins. Log shipping.

Casper H.S. Dik wrote:
> jKILLSPAM.schipper_at_math.uu.nl writes:
> >Finally, note the aforementioned problem with immutable files - you can
> >always mount another file system over the parent directory (in OpenBSD,
> >obviously).
>
> Sounds like a bug.

immutability is an attribute of the inode. mounting does not affect the inodes of the covered filesystem. it would be silly to think the attribute applied to a filename. file permissions do not apply to the name, why would you expect what amounts to a read-only flag to be different?

i think this is a common misperception. the point of securelevels and immutable files is so that after a machine is compromised, you can turn it off, unplug it, turn it back on, and know that everything is back to a pre-compromise state [provided the right pieces were immutable] so that you can trust the output of ls. it is not to make exec("/bin/ls") always run the exact binary you're hoping for while an intruder is poking around at the same time. Received on Fri Sep 08 2006 - 16:56:52 CDT