[OpenAFS] keeping openafs from breaking group security

Derrick J Brashear shadow@dementia.org
Sun, 6 Feb 2005 17:44:16 -0500 (EST)


On Sun, 6 Feb 2005, Matthew Miller wrote:

>> Incidentally, Linux isn't Unix(tm), and my SunOS 4 system (which strictly
>> speaking is BSD and not Unix(tm) either) didn't do it. And IIRC neither
>> does Solaris, which is probably the most Unix(tm) of the bunch I routinely
>> use.
>
> The standard scripts for Solaris may not create a user-specific group, but

The standard tools came with it. What you wrote isn't "unix since the 
beginning of time", it's "what you wrote".

> supplementary groups *are* completely possible, widely used, and completely
> standard Unix. Unix(tm), even.
>
> I don't know exactly when this started, but there's certainly been an
> /etc/group file on every Solaris or old SunOS box I've ever seen.

Oh, sure, but the point is that you don't need to assign every user a 
group, even if you are. Do you have a reason, or are you just doing it 
because some vendor decided to?

But, this is sort of a stupid argument, since I think everyone here is on 
the same side: pags as groups are a problem.