[OpenAFS] Feature request, sort of

Jeffrey Altman jaltman@secure-endpoints.com
Wed, 18 Jul 2007 11:16:23 -0400


Harald Barth wrote:
>> Steve's request
>> is for a mechanism of restoring a volume that the user can read but
>> which the user can't alter.  This is an ACL issue.  Perhaps the solution
>> is to not make the user the owner and take away all "write, insert, and
>> admin" privileges on the volumes directories.
> 
> I don't want to alter the ACLs because they should be look identical
> to the user as when the volume was backed up so that the whole
> directory structure it can be copied back "as it was".

Except that the new volume should be "special" in that no changes are
permitted.  In other words, the "wida" permissions are neutered on this
volume.  Since the new volume type doesn't exist, modifying the ACLs is
something that has the same effect that you can do today.