Here is the scenario: there is a directory for FTP that users can write to, and then a "mirrored" directory (using mount --bind) that web users can read. There is absolutely no reason that the web users would ever need to write to this directory, so for security reasons I would like to set it to read-only. Unfortunately it seems mounting the directory as read-only (ro) is ineffective when used in combination with --bind.
let me show you the 2 mounts I speak of:
Code:
/dev/md/0 on /mnt/data type ext3 (rw)
/mnt/data on /var/www/htdocs/main/data type none (ro,bind)
See how it says ro,bind? the "ro" is useless, but I put it there anyway.
The only other idea I have is to use samba to create a share, and then use smbmount to mount it as read-only with smbfs, but how incredibly inefficient is that ?