100.chksetuid and nfs
Charles Sprickman
spork at bway.net
Mon Jan 15 20:37:36 UTC 2007
Hello all,
I've never noticed this on any 4.x boxes, but on 6.2 I'm seeing the
following in the daily security run:
Checking setuid files and devices:
find: /usr/src: Operation timed out
find: /usr/ports: Operation timed out
find: /usr/obj: Operation timed out
Those three directories are mounted via nfs. It seems like when the daily
run kicks off on a bunch of boxes it's traversing nfs mounts and
temporarily swamping the nfs server. I don't see any real differences in
the chksetuid script from 4.11 to 6.2... Any ideas what has changed or
how to prevent the script from traversing nfs mount points?
Thanks,
Charles
More information about the freebsd-stable
mailing list