On Tue, Sep 10, 2013 at 01:47:20PM -0500, Mark Tinguely wrote: > This patch allows clients like DMF to modify an immutable file > without changing the immutable capability on the file, which > would expose the file to change. > > This patch is restricted to holders of the CAP_LINUX_IMMUTABLE, > so no addition security risk has been introduced. The immutable flag means that the file can't be modified, and CAP_LINUX_IMMUTABLE allows setting/removing that restriction, but not ignoring it. So: NAK, this is a change in semantics and long-standing behaviour. _______________________________________________ xfs mailing list xfs@xxxxxxxxxxx http://oss.sgi.com/mailman/listinfo/xfs
