[146] in testers
Re: 6.3B: activate/attach complaints
daemon@ATHENA.MIT.EDU (daemon@ATHENA.MIT.EDU)
Sat Jul 22 13:47:08 1989
Date: Sat, 22 Jul 89 13:46:45 EDT
From: Theodore Ts'o <tytso@ATHENA.MIT.EDU>
To: Ken Raeburn <raeburn@ATHENA.MIT.EDU>
Cc: testers@ATHENA.MIT.EDU
In-Reply-To: Ken Raeburn's message of Fri, 21 Jul 89 19:51:56 -0400,
Reply-To: tytso@ATHENA.MIT.EDU
The other alternative is to remove the -override and -setuid options
from the attach invocation located in activate. After all, it is
possible to specify in /etc/attach.conf that the system packs should be
mounted w/o nosuid, even if all other filesystems are mounted nosuid.
In addition, the -override and -setuid options will only apply when
someone has messed with /etc/attach.conf --- that is, a private
workstation. Hopefully, we can hope that private workstation owners can
figure out how to set things up correctly.
On the other hand, there are other reasons for making activate be a real
program rather than a shell script. For one thing, it will discourage
users from messing with activate/deactivate on public workstations.
(Although this is achieved at the cost of making it harder for private
workstations to customize their workstations, which I don't think is as
important.)
- Ted
