[OpenAFS] /afs permissions
Joe Buehler
jbuehler@spirentcom.com
Fri, 28 Oct 2005 11:29:31 -0400
The default afsd options (for AIX machines at least) end up
producing a /afs directory that is mode 777. This causes
sshd to refuse to use public key files stored in .ssh
directories somewhere under /afs.
Adding -afsdb -dynroot -fakestat causes the mode to change
to 755, which works properly. I haven't checked to see
which option causes the mode change.
My question is, where does the mode 777 come from? Is there
any real reason for it to be 777 given that it's the AFS
mount point? Wouldn't 755 be a better mode?
--
Joe Buehler