Date: Sun, 08 Feb 2004 12:37:09 -0800 From: Tim Kientzle <kientzle@acm.org> To: Harti Brandt <brandt@fokus.fraunhofer.de> Cc: freebsd-hackers@freebsd.org Subject: Re: Odd ACL question Message-ID: <40269DF5.2090806@acm.org> In-Reply-To: <20040208134125.L28775@beagle.fokus.fraunhofer.de> References: <4025A0DD.2010607@acm.org> <20040208134125.L28775@beagle.fokus.fraunhofer.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 7 Feb 2004, Tim Kientzle wrote:
>Joerg Schilling's "star" archives ACLs as follows:
>
>"user::rwx,group::r--,group:mail:rw-:6,mask::rw-,other::r--"
>
>Note the "group:mail:rw-:6" entry that contains a fourth
>field with the uid/gid number. ...
>
>Question: Is this a useful extension?
Harti Brandt responded:
> It definitely is. Joerg and I had several hours of talk on this issue.
> If you, for example, restore on a system that usually gets its passwd from
> YP or LDAP and you don't have it available ...
Ah. That's the example I needed. Now to figure out how to implement
such functionality; hacking the acl library functions may
not be the best approach, but I'm equally dismayed by the prospect
of duplicating the acl library functions in my code. ;-(
> As far as I know there are options to star that let you select the exact
> behaviour in these cases.
This is one difference between 'star' and my work: 'star' offers
a great deal of control over the archiving/dearchiving
process; my work tries to remove the need for such control
by using intelligent algorithms. For example, bsdtar/libarchive
doesn't require you to specify the compression when reading archives;
it determines it automatically.
In this case, I'm considering:
* If the username exists, use that.
* If the username does not exist and the UID is not already in
use, issue a warning and use the UID.
* If the username exists and the UID conflicts with the local
system, ???
This last case is the tough one. My temptation: map it to
an unused UID, issue a warning about the remap, and keep going.
There are certainly rare cases where manual control is
needed. That's why I'm pleased that 'star' is available
in ports. ;-)
Tim Kientzle
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40269DF5.2090806>