Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 18 Aug 1999 07:34:49 -0400 (EDT)
From:      Thomas David Rivers <rivers@dignus.com>
To:        mrami@gbtb.com, wsanchez@apple.com
Cc:        freebsd-hackers@FreeBSD.ORG, pwd@apple.com, tech-userlevel@netbsd.org, umeshv@apple.com, warner.c@apple.com
Subject:   Re: Need some advice regarding portable user IDs
Message-ID:  <199908181134.HAA37644@lakes.dignus.com>
In-Reply-To: <Pine.BSF.4.10.9908180408590.1866-100000@mrami.ghostgbtb.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
I had a thought on this....

It seems you are trying to provide the "floppy model" that users
currently have with their PCs.

User A writes the floppy,  User B can read it and do whatever he 
wants...

(I know this is Apple - but I'll stick to MSDOS for the discussion,
and "floppy" indicates any removable media.)

The reason for this is that MSDOS filesystems don't keep any
user credentials.   So, use  B can read anything on any floppy
he can find.

Wouldn't creating a file system that didn't support user
credentials solve your problem?   Format the floppy in that
file system and hand it to user B.   When user B mounts it,
he can do whatever he wants.   User A is aware of how the
floppy was created, as presumably some special step is
required to create the "discard credential" file system
on the floppy.   

Perhaps, such a file system could even be a UFS with a 
special marker somewhere?   Then, this marker could be "twiddled" 
after the fact.   For example,  user A formats and makes
a new UFS file system on the floppy, and copies the files
over.   Marks it as having no credentials (twiddles the bit)
and hands it to user B.   User B mounts it, with a regular
UFS mount - but because the magic bit is "twiddled" GID
and UID are ???  (here's where things break down, just what
do you use for those?  root/nobody/user's gid&uid?)

Just some thoughts...

	- Dave Rivers -


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199908181134.HAA37644>