[OpenAFS] running vos from "another" machine

Ron Croonenberg ronc@depauw.edu
Wed, 24 Aug 2005 15:13:03 -0500

Hi Kim,

>Hi Ron,

>Guess you're up and running :)

Yup,  had some communication problems between the "old" server and the new =

>The AFS commands can be run from any AFS client.

Right..  BUT I don't want to just install the AFS client because I don't =
want anyone to really have access to that machine.

>AFAIK if a user doesn't have an entry in /etc/passwd they're not able >to =
log in.  PAM may be able to circumvent this, I'm not an expert, but
> suspect if you try using an /etc/passwd with just the permitted login
> users that it will work.

>IOW -- set the machine up as an AFS client, and any of the AFS=20
>commands can be run from that client.  Trim the /etc/passwd file
> and see if you can still log in as one of the deleted users.

Uhm, ok,  someone else suggested to not do any "pam" stuff..  that way afs =
users can simply not use the machine.

I thought that maybe there was some "elegant" way to do what I wanted.




Kim (Dexter) Kimball
CCRE, Inc.

     -----Original Message-----
     From: openafs-info-admin@openafs.org=20
     [mailto:openafs-info-admin@openafs.org] On Behalf Of Ron=20
     Sent: Wednesday, August 24, 2005 11:36 AM
     To: openafs-info@openafs.org
     Subject: [OpenAFS] running vos from "another" machine
     Hello all,
     I want a machine that is not "per se" an OpenAFS client or=20
     server to be
     able to run vos so I can dump volumes in a cell.
     (Actually what I want is "a" machine to run OpenAFS so=20
     that I can use
     vos on it, but I don't want anyone with an afs account to=20
     be able to log
     in to the box, except an OpenAFS admin maybe.)
     Can that be done ? (and if so what do I need ?)
     OpenAFS-info mailing list