[OpenAFS] home on afs woes

Jeffrey Hutzelman jhutz@cmu.edu
Wed, 04 Jan 2006 18:00:31 -0500


On Wednesday, January 04, 2006 04:30:37 PM -0500 Ken Hornstein 
<kenh@cmf.nrl.navy.mil> wrote:

>> With AFS we have to decide whether to allow the world to read the entire
>> top  level of a home directory, or to always require the username and
>> password for  each login. At the moment I've chosen the latter, since
>> the former requires  vigilance on the part of the user that I'm not
>> comfortable with counting on.
>
> FWIW, we choose the exact opposite option (world readable home directory)
> for the exact same reason (lack of confidence in the vigilance of users).

So did we, decades ago, and not just for AFS.

-- Jeff