adding a fs to /etc/exports deletes noexec flag from mount output
Marat N.Afanasyev
amarat at ksu.ru
Wed Apr 18 23:53:29 UTC 2007
Hello!
How to solve the following problem:
I have some very large filesystems that are nfs-exported to some other
machines, they are mounted there as noexec to make sure that no
executable will be run from them. on machines where this filesystems
mounted via nfs with noexec option in /etc/fstab,
/etc/periodic/security/100.chksetuid doesn't try to find chuid/suid
files on this filesystems.
On the host machine i see that as fast as i add filesystem to
/etc/exports 'noexec' option disappears from mount output. and i have
either to switch off /etc/periodic/security/100.chksetuid completely, or
wait for find to traverse entire 2T filesystems with huge amount of
files and directories. it locks up my raid device almost completely, and
i can read info from device only as fast as 1m per second. It's somehow
annoying :(
is there any other ways to solve this rather than switching off
$daily_status_security_chksetuid_enable in /etc/periodic.conf?
--
SY, Marat
More information about the freebsd-fs
mailing list