From owner-freebsd-hackers@FreeBSD.ORG Sun Feb 8 04:48:44 2004 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0A10916A4CE for ; Sun, 8 Feb 2004 04:48:44 -0800 (PST) Received: from mailhub.fokus.fraunhofer.de (mailhub.fokus.fraunhofer.de [193.174.154.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id 49FD443D1D for ; Sun, 8 Feb 2004 04:48:43 -0800 (PST) (envelope-from brandt@fokus.fraunhofer.de) Received: from beagle (beagle [193.175.132.100])i18CmdG06535; Sun, 8 Feb 2004 13:48:39 +0100 (MET) Date: Sun, 8 Feb 2004 13:48:39 +0100 (CET) From: Harti Brandt To: Tim Kientzle In-Reply-To: <4025A0DD.2010607@acm.org> Message-ID: <20040208134125.L28775@beagle.fokus.fraunhofer.de> References: <4025A0DD.2010607@acm.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-hackers@freebsd.org Subject: Re: Odd ACL question X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Feb 2004 12:48:44 -0000 On Sat, 7 Feb 2004, Tim Kientzle wrote: TK>In tinkering with libarchive's support for ACLs, TK>I've run across a head-scratcher: TK> TK>Joerg Schilling's "star" archives ACLs as follows: TK> TK>"user::rwx,group::r--,group:mail:rw-:6,mask::rw-,other::r--" TK> TK>Note the "group:mail:rw-:6" entry that contains a fourth TK>field with the uid/gid number. FreeBSD's acl_from_text TK>chokes on this, although Joerg asserts that posix1e TK>permits additional fields. TK> TK>Question: Should acl_from_text be altered to ignore TK>additional fields? TK> TK>What I can't quite figure out is whether or not this TK>uid/gid field is really useful. It seems like it might TK>be useful when moving archives across systems, but TK>I'm not entirely convinced that it's right to restore TK>the uid if the username doesn't exist. TK> TK>Question: Is this a useful extension? It definitely is. Joerg and I had several hours of talk on this issue. If you, for example, restore on a system that usually gets its passwd from YP or LDAP and you don't have it available at the moment you'll appreciate the possibility to restore from numerical user ids. I think some tar's use 'nobody' inb such cases. This may leave users with undeletable files in their directories (undeletable for the user). As far as I know there are options to star that let you select the exact behaviour in these cases. harti -- harti brandt, http://www.fokus.fraunhofer.de/research/cc/cats/employees/hartmut.brandt/private brandt@fokus.fraunhofer.de, harti@freebsd.org