Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 9 Feb 2004 18:02:49 +0100 (CET)
From:      Harti Brandt <brandt@fokus.fraunhofer.de>
To:        Dan Nelson <dnelson@allantgroup.com>
Cc:        Tim Kientzle <kientzle@acm.org>
Subject:   Re: Odd ACL question
Message-ID:  <20040209180059.J33455@beagle.fokus.fraunhofer.de>
In-Reply-To: <20040209164216.GA26419@dan.emsphone.com>
References:  <4025A0DD.2010607@acm.org> <20040208134125.L28775@beagle.fokus.fraunhofer.de> <20040209122341.S32427@beagle.fokus.fraunhofer.de> <20040209164216.GA26419@dan.emsphone.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Mon, 9 Feb 2004, Dan Nelson wrote:

DN>In the last episode (Feb 09), Harti Brandt said:
DN>> On Sun, 8 Feb 2004, Tim Kientzle wrote:
DN>> TK>On Sat, 7 Feb 2004, Tim Kientzle wrote:
DN>> TK>>Joerg Schilling's "star" archives ACLs as follows:
DN>> TK>>
DN>> TK>>"user::rwx,group::r--,group:mail:rw-:6,mask::rw-,other::r--"
DN>> TK>>
DN>> TK>>Note the "group:mail:rw-:6" entry that contains a fourth
DN>> TK>>field with the uid/gid number. ...
DN>> TK>
DN>> TK>   * If the username exists and the UID conflicts with the local
DN>> TK>       system, ???
DN>> TK>
DN>> TK>This last case is the tough one.  My temptation:  map it to
DN>> TK>an unused UID, issue a warning about the remap, and keep going.
DN>>
DN>> That may cause the problem I described. This may leave a file in a
DN>> user directory that the user cannot delete without intervention of
DN>> the root user, but its probably the simplest solution. What about
DN>> non-existing groups?
DN>
DN>Any file that a user creates, that user can delete.  If you're talking
DN>about a root user extracting something into a user's directory, that's
DN>different, but you have the same problem even without ACLs.

Yes, the question was, what to do with a file whose UID does not exist on
the system. And, yes, this is about the root user. If you restore a file
server for a couple of hundereds or thousands of user you probably don't
want to fix undeleteable (by the users) file handish.

harti
-- 
harti brandt,
http://www.fokus.fraunhofer.de/research/cc/cats/employees/hartmut.brandt/private
brandt@fokus.fraunhofer.de, harti@freebsd.org

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040209180059.J33455>