From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 21688 invoked by alias); 7 Jul 2014 09:36:30 -0000 Mailing-List: contact zsh-users-help@zsh.org; run by ezmlm Precedence: bulk X-No-Archive: yes List-Id: Zsh Users List List-Post: List-Help: X-Seq: 18929 Received: (qmail 8009 invoked from network); 7 Jul 2014 09:36:16 -0000 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on f.primenet.com.au X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.2 Message-ID: <53BA6785.2030208@free.fr> Date: Mon, 07 Jul 2014 11:25:25 +0200 From: =?UTF-8?B?RnJhbsOnb2lzIFJldm9s?= User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130630 Icedove/17.0.7 MIME-Version: 1.0 To: shawn wilson CC: Zsh Users Subject: Re: note metadata for files References: <20140703224404.4cee3433@pws-pc.ntlworld.com> <53B6870A.2050304@free.fr> In-Reply-To: X-Enigmail-Version: 1.6 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit On 07/07/2014 00:32, shawn wilson wrote: > So, I'm pushing this more into the realm of OT here (ie, this no > longer has anything to do with zsh and for this reason and possibly > others, this discussion might want to go offlist) [...] >> In case you're interested in the xattr compatibility issue, I've written >> a paper about this: >> http://dcevents.dublincore.org/IntConf/dc-2011/paper/view/53 >> Sadly it seems nobody cares. > > Hmmmm, so how far has your research gone here? What software ignores > xattr on which fs (how well does something like ncase deal with it)? Well, even things like /bin/cp -p (--preserve) by default only preserves mode,owner‐ship,timestamps but not xattr... I think rsync supports the linux xattrs, probably not enabled by default again, but I didn't try yet. Don't know about ncase. > What security mechanisms rely on EAs and have you tried to mangle them > in order to bypass these mechanisms (either OS or application > policies)? I didn't really consider this question, given Samba alone already has a hard time enough converting the ACLs. Note, xattrs on Linux (and the now-withdrawn POSIX draft about xattrs) have only been done on purpose of implementing ACLs atop. > I'd be more interested in the networked ramifications of > mangled EAs, but a copy from a thumb drive might be interesting as > well (though I doubt that would be very fruitful since moving into a > higher security realm is a bit harder in kernel space). Besides, things like Samba and NTFS-3g differ (at least used to) on the way the mangle named-stream inside xattrs... François.