[AFS3-std] Re: Methods of Restricting AFS3 ACL rights (correctness+performance)

[Adam Megacz]

Andrew Deason <adeason@sinenomine.net> writes:
>>> Yes, so then it's not terribly useful, unless you always use it at the
>>> volume root.

Adam Megacz <adam@megacz.com> writes:
>> I think you mean "below the volume root", not "at the volume root":
>>
>>  [example omitted]

Jeffrey Altman <jaltman@secure-endpoints.com> writes:
> If you want to apply a different policy to a sub tree within the volume
> user.foo, then you would split the volume at the directory where you
> want the new policy to take effect and apply the policy to the new
> volume.

Then what you really meant was "it's not terribly useful to
superusers unless you always use it at the volume root".

I can agree with that statement.

  - a