[OpenAFS] 2 simple questions

Dirk Heinrichs ext-dirk.heinrichs@nokia.com
Wed, 16 Nov 2005 14:34:02 +0100


--nextPart1724069.4UnBiKWlEL
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

Hi,

I have two questions regarding AFS administration best practices:

1) For users home directories in AFS, is it save to remove=20
system:administrators from the ACLs (the users have rlidwka on their=20
$HOME)?

2) I currently have /afs and /afs/<mydomain> owned by root:root, but=20
i.e. /afs/<mydomain>/data is owned by afsadm:afs (150:150), afsadm being a=
=20
member of system:administrators. Is it ok to have /afs (the volume, not the=
=20
mount point) and /afs/<mydomain> be owned by afsadm:afs?

Thanx...

	Dirk
=2D-=20
Dirk Heinrichs          | Tel:  +49 (0)162 234 3408
Configuration Manager   | Fax:  +49 (0)211 47068 111
Capgemini Deutschland   | Mail: dirk.heinrichs@capgemini.com
Hambornerstra=DFe 55      | Web:  http://www.capgemini.com
D-40472 D=FCsseldorf      | ICQ#: 110037733
GPG Public Key C2E467BB | Keyserver: www.keyserver.net

--nextPart1724069.4UnBiKWlEL
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.9.19 (GNU/Linux)

iD8DBQBDezVK8NVtnsLkZ7sRAujiAKCUvlJuQ+x3SY63m9LFYjbZlrHi+QCcCPKU
a6FeEysFQH/llpnxchHcDRo=
=eRCS
-----END PGP SIGNATURE-----

--nextPart1724069.4UnBiKWlEL--