That's an interesting question.
A couple of ideas:
a) I wonder of RWatson's ACL stuff could help here?
b) This problem cries for a DMAPI type solution- you could have a daemon that
monitors all creats/chmods and retains knowledge of the filenames for all
SUID/SGID creats/chmods- this way /etc/security would simply summarize the
current list and could be run any time.
> /etc/security takes a number of hours to run on my system. The problem
> is that I have some very large mounted file systems and the code to look
> for setuid files wants to walk through them all. I recoded the check in
> Perl, but it ran at about the same speed. I have considered reworking
> the code to do the file systems in parallel, but I thought I should ask
> here first. Comments? Suggestions?
>
> -r
>
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
