[OpenAFS-port-darwin] afslogscript.loginLogout on 10.4.10
Derrick Brashear
shadow@gmail.com
Tue, 13 Nov 2007 13:15:55 -0500
On Nov 13, 2007 12:31 PM, Grindley, Karl <kgrindley@ll.mit.edu> wrote:
>
> The afslog plugin seems to do very strange things. One particular issue is that if there is a local account with the same username as the kerberos principal on the local machine with a different uid than the afs uid, afslog assigns the token with the local uid rather than the correct uid from the afs server. It looks like the cache manager is just confused and the forged uid in the token doesn't provide any real access in afs.
The UID in a token is a text string. The server doesn't look at it, or care.