[OpenAFS] significant delay for afs user to login as root via su
Thu, 18 Mar 2010 06:17:57 -0700 (PDT)
I see what you are saying, but how would you handle a scenario with thousands of people (university students) accessing hundreds of computers in labs all over campus which they are not responsible for and cannot be bothered to manage? Is there a way of automatically forcing .XAuthority to reside in /tmp?
--- On Thu, 3/18/10, Harald Barth <email@example.com> wrote:
> From: Harald Barth <firstname.lastname@example.org>
> Subject: Re: [OpenAFS] significant delay for afs user to login as root via su
> To: email@example.com
> Cc: firstname.lastname@example.org, email@example.com
> Date: Thursday, March 18, 2010, 7:59 AM
> > I'm not sure I see the value of putting a file that's
> part of a
> > distributed network filesystem in a local directory.
> First: The .Xauthority file is only used locally on your
> machine, why
> would you need it in AFS?
> Second: If we now can agree that .Xauthority does not need
> to be in
> AFS, why not put it in /tmp and get better security? If
> /tmp is a
> memory file system, the better.
> OpenAFS-info mailing list