[OpenAFS] OpenAFS and Solaris 10 Zones
Matthew Weigel
unique@idempot.net
Thu, 5 May 2005 21:02:43 -0500
On 4 May, 2005, at 6:37 PM, Chris Huebsch wrote:
> I depends, from what I know about zones, they are like virtual
> host-systems. When one has a user-management which is unified over all
> zones, that doesn't seem to be a problem at all.
Well, as I understand it, the point of zones is to delegate and reduce
the
power of root access. For instance, running insecure or
questionably-secure
software packages far removed from other services, or hosting with each
user getting root.
OTOH, a) running the OpenAFS server shouldn't be impacted (as I
understand it,
this is strictly client-side), and b) I wouldn't be totally optimistic
about
running the AFS client kernel module in the non-global zone anyway.
That does bring to mind something else, is the PAG namespace global
across
user-mode linux instances?
--
Matthew Weigel
unique&idempot.ent
Unique and Idempotent