[OpenAFS] anon FTP upload directory ACL

Russ Allbery rra@stanford.edu
Sat, 01 Jun 2002 16:12:02 -0700

Derek Atkins <warlord@MIT.EDU> writes:

> ISTR there were two ways of doing implicit-admin.  One was by directory
> ownership, the other was volume ownership.  I thought in the end it was
> by-volume, but perhaps that was just an MIT Security patch that was
> never accepted back into the mainline (and yes, IMHO is it a security
> bug that you mkdir foo and then control the acl on foo).

I'm definitely inclined to agree with you; I can't ever remember wanting
the current behavior as opposed to just watching out for it.  Maybe that
patch should go into OpenAFS.

Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>