I recently found that the target=hda tag in virsh was actually not translating into guest OS (guest OS's use /dev/sdX as the disk device names, in general, it seems).
virt-install and /dev/hda vs. /dev/sda
I am thus now wondering, what is the meaning of the "target dev" declarations which comprise my virt-install / virsth dumped XML files?
<disk type='file' device='disk'>
<driver name='qemu' type='raw' cache='none'/>
<source file='/VirtualMachines/bthadoop-sda.raw'/>
<target dev='hda' bus='ide'/>
<alias name='ide0-0-0'/>
<address type='drive' controller='0' bus='0' target='0' unit='0'/>
</disk>
<disk type='file' …我有两个用户:bob 和 sally,他们分别拥有两个文件:bob100 和 sally100:
> ls -altrh /path/to/dir :
-rw-r--r--. 1 bob test 0 Jan 7 12:59 bob100
-rw-r--r--. 1 sally test 0 Jan 7 13:06 sally100
drwxrwxrwx. 8 root root 4.1K Jan 7 13:06 .
但是,BOB 可以删除 SALLY 帐户中的文件:
> runuser -l bob -c 'rm -f /path/to/dir/sally100'
为什么允许 bob 删除一个显然只有 sally 有写权限的文件?