On Thu, 15 May 2003, Robert Watson wrote: > Desired Features for 5.2-RELEASE > > +------------------------------------------------------------------------+ > | Issue | Status | Responsible | Description | > |-------------+--------+---------------+---------------------------------| > | | | | Currently, MAC protections are | > | | | | enforced only on locally | > | | | | originated file system | > | | | | operations (VOPs), and not on | > | | | | RPCs generated via the NFS | > | MAC support | | | server. Improvements in NFS | > | for NFS | -- | Robert Watson | server credential handling are | > | Server | | | required to correct this | > | | | | problem, as well as the | > | | | | introduction of new entry | > | | | | points to properly label NFS | > | | | | credentials and perform | > | | | | enforcement properly. | > |-------------+--------+---------------+---------------------------------| Do you plan to transfer labels over NFS? If so, why not to make some generic extended attributes transfer mechanism over NFS and use it for ACL too? And what about packet labeling - it's still desired feature for trustedbsd/6.0-current?Received on Thu May 15 2003 - 23:16:09 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:37:08 UTC