[OpenAFS] "group prefix doesn't match owner"
Derrick Brashear
shadow@gmail.com
Mon, 3 May 2010 23:21:35 -0400
On Mon, May 3, 2010 at 10:55 PM, Russ Allbery <rra@stanford.edu> wrote:
> Derrick Brashear <shadow@gmail.com> writes:
>
>> If it tracked by name.
>
>> A similar "attack" has been discussed before.
>
>> pts cg shadow:something
>> pts chown shadow:something jaltman
>
>> jaltman now owns jaltman:something.
>
> This behavior is also really annoying if you have an external group system
> whose names you're trying to synchronize with AFS PTS groups.
only if you track by name and not by id. same issue. :)