[OpenAFS] (no subject)
Tom Reinhart
rhino_tom@hotmail.com
Tue, 15 Oct 2002 20:04:46 -0700
>>In conventional Unix, I can set a directory to "drwx--x--x" permissions
>>and then create subdirectories which users can access by name. This is
>>useful because no one can access files they don't know the name of.
>>However, I've just migrated to a new system that uses OpenAFS, and I
>>can't figure out a way to accomplish this. I tried the obvious thing of
>>setting the ACL to just "r", but apparently without the "l" permission,
>>nothing else works. Is there any other way to do this?
>
>No. I'm afraid AFS doesn't support this.
That's rather unfortunate as it makes it very difficult to work the way I
want to. One thing I wanted to do was share files with unauthenticated
users in other cells without exposing them to the whole world. Although
ACLs are useful, I've noticed that AFS has some serious limitations compared
to normal Unix filesystem permissions. Does anyone know what the thinking
was behind these decisions? Here's a couple of things I would do
differently (could these be considered feature requests?)
1) Restore the ability to have "hidden" directories, for example, by paying
attention to the "r" and "x" permissions on directories, or by creating a
new ACL that could be used in place of "l" (maybe "s" for seek?). Also,
some equivalent to the "t" directore mode bit would be useful (allowing
users to create delete files, but only if they are the owner)
2) The per-directory limitation on permissions is quite onerous,
especially considering that AFS already stores the mode bits. Would it be
possible to make the AFS server pay more attention to the Unix chmod
permissions on individual files? The user bits would restrict the user from
reading/writing their own files, the "other" bits would limit the
system:an"yser" account, and the "group" bits would limit the other users
that are explicitly mentioned in the ACL. These mode bits would be
subtractive to permissions, i.e. no one would have more permissions than the
ACL granted. This would allow me, for example, to give system:anyuser "rl"
access in my home directory, while still restricting certain dotfiles that I
don't want people to see, without having to put symlinks for half my files.
I think these changes would make AFS a lot more acceptable to people
accustomed to working with most other Unix filesystems.
Tom
_________________________________________________________________
Get faster connections -- switch to MSN Internet Access!
http://resourcecenter.msn.com/access/plans/default.asp