[OpenAFS] some basic infos about security

Derrick J Brashear shadow@dementia.org
Wed, 9 Apr 2003 17:54:45 -0400 (EDT)


On Wed, 9 Apr 2003, Lo'oRiS il Kabukimono wrote:

> Derek Atkins <warlord@MIT.EDU> :
>
> > Each directory within AFS has an ACL that lists who may access files in
> > that directory.
>
> ACL... mmmmmm.... can't it simply use the normal permissions?

For AFS, directory level ACLs *are* normal permissions.

> I'd like a network filesystem that is completely trasparent to the user...
> he could not even know it is a network filesystem...
>
> And ACL is the opposite of this, if i understood correctly... :|

Depends on how you use it. ACLs may be orthogonal to it, in some
environments.