On lunes, 5 de diciembre de 2016 11:44:14 AM CST Dave Love wrote: > dennis@xxxxxxxx writes: > > Without filesystem capabilities, many things will not work. Ping as a > > user for instance. Lots of setuid binaries switched to using > > filesystem capabilities rather than setuid and require it to work. RPM > > failing is the right thing to do. > > I haven't actually noticed problems with that, but having root on a > networked filesystem (be it NFS or something else) should be supported, > and I thought it explicitly was by Red Hat. I have a few hundred > stateless HPC compute nodes with an NFS root, but the image is > maintained in a chroot on the file server, i.e. a local file system. > > I wonder if there's more then one problem with rpm anyway. I've seen > problems in the past which I'd put down to rpm's db library not working > properly on NFS 3, but I don't remember whether I verified that it was > the (whole) problem. It has not been supported since we moved to using filesystem capabilities instead of setuid. I am not sure it was really a conscious decision. everything should still work when run by root. somethings will fail when run as a unprivileged user because permission can not be granted. Dennis
Attachment:
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
