https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
Graham Perrin changed:
What|Removed |Added
Status|New |Open
Assignee|b...@freeb
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
Sebastian S changed:
What|Removed |Added
CC||sha...@schaack.io
--- Comment #16 fr
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #15 from Oleg ---
Is it going to be fixed(changed)?
--
You are receiving this mail because:
You are the assignee for the bug.
___
freebsd-bugs@freebsd.org mailing list
https://lists.
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #14 from Oleg ---
(In reply to Allan Jude from comment #13)
Bob can unmount /etc or destroy it when permissions delegated incorrectly.
Don't delegate mountpoint permissions if don't want allow mount to /etc.
And so on... this al
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #13 from Allan Jude ---
(In reply to Oleg from comment #9)
The difference is that unmounting has only one input, the filesystem you wish
to unmount.
Mounting is more dangerous. Sure bob is allowed to mount zroot1/tst, but the
s
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #12 from Allan Jude ---
After investigating further, I am a bit torn on this one.
Rules that apply to mounting:
if vfs.usermount == 1, user must own the directory they are attempting to mount
to
https://svnweb.freebsd.org/bas
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #11 from Oleg ---
zroot -> zroot1
--
You are receiving this mail because:
You are the assignee for the bug.
___
freebsd-bugs@freebsd.org mailing list
https://lists.freebsd.org/mailma
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #10 from Oleg ---
Once again:
As root:
# zfs create -o mountpoint=/tst zroot1/tst
# ls -ld /tst
drwxr-xr-x 2 root wheel 2 Oct 7 22:43 /tst/
# zfs allow -u bob
clone,create,destroy,diff,hold,mount,mountpoint,quota,receive,s
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #9 from Oleg ---
Unmount as I told is working well with 'allow mount' permission. I don't see
why mount then should be implemented different. Everyone should understand that
giving any permissions to manage zfs is already danger
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #8 from Yuri Pankov ---
Ugh.. destroy being successful looks like real bug here, you need to be able to
unmount and we have the following in mount(2):
The unmount() system call may fail with one of the following errors:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #7 from Oleg ---
Finally, if this is behavior as per design and nobody plan to chang, then it
should be mentioned in the manpage that "allow mount" will need additionally
this or this... e.g. the user must own dataset, or/and a
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #6 from Oleg ---
If I give such permissions then I know what I'm doing and what can be sequence
from my configuration. It's not the same as giving full root. I can limit
access for this unprivileged user as I wish using other fa
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #5 from Yuri Pankov ---
Yes, it is administrative permission, and no, it has *everything* to do with
permissions on dataset/mountpoint. You are allowed to run `zfs mount`, but
it's not intended as privilege escalation (you woul
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #4 from Oleg ---
It doesn't work for me. Anyway it would be a workaround if it would work. The
problem has nothing with permissions on dataset/mountpoint. They should be kept
as the original, owned by root. Manpage clearly indic
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #3 from Yuri Pankov ---
Sorry if I was unclear.
$ sudo zfs create -o mountpoint=/tst zroot/tst
$ sudo zfs umount zroot/tst
$ sudo zfs allow -u yuri mount zroot
$ ls -ld /tst
drwxr-xr-x 2 root wheel 2 Oct 7 15:44 /tst
$ zfs
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
--- Comment #2 from Oleg ---
#zfs allow zroot/testset
Permissions on zroot/testset -
Local+Descendent permissions:
user bob
clone,create,destroy,diff,hold,mount,mountpoint,quota,receive,
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
Yuri Pankov changed:
What|Removed |Added
CC||yur...@yuripv.net
--- Comment #1 fro
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232021
Bug ID: 232021
Summary: zfs cannot mount 'dataset': Insufficient privileges
Product: Base System
Version: 11.2-RELEASE
Hardware: Any
OS: Any
Status: New
18 matches
Mail list logo
