From owner-freebsd-hackers Thu Dec 26 16:38:48 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id QAA21278 for hackers-outgoing; Thu, 26 Dec 1996 16:38:48 -0800 (PST) Received: from itsdsv1.enc.edu (itsdsv1.enc.edu [207.95.42.241]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id QAA21271 for ; Thu, 26 Dec 1996 16:38:45 -0800 (PST) Received: from dingo.its.enc.edu (dingo.its.enc.edu [207.95.222.250]) by itsdsv1.enc.edu (8.7.5/8.7.3) with SMTP id TAA27251; Thu, 26 Dec 1996 19:35:11 -0500 (EST) Date: Thu, 26 Dec 1996 19:41:55 -0500 (EST) From: Charles Owens X-Sender: owensc@dingo.its.enc.edu To: David Leonard cc: hackers@freebsd.org Subject: Re: multi-group file access techniques (repost) In-Reply-To: <199612262334.JAA07441@foxtail.dstc.edu.au> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 27 Dec 1996, David Leonard wrote: > In dstc.mail.freebsd.hackers you write: > > > .../man_readable_c is a "control directory," a technique that seems > [...] > > making 'www' the owner of all "choke point" directories: > > okay, so this technique is emulating ACLs by concatenating the unix > permissions on ancestor directories. (correct me if ive got this wrong) Yep, that's the general idea. > > In his article, Doug Morris also speaks of a technique of using hard links > > of directories to achieve a similar effect. This technique could be used > > in tandem with the above to add more flexibility, but we all know the > > GREAT EVIL that hard linked directories are. :-) > > this could also be done with portalfs or nullfs? hard links can > introduce inter-device cycles in the filesystem tree which many > program (libraries) rely on the non-existence of. > > imho introducing ACLs is admitting to complexity :) I agree with the sentiment! > The really simple solution is having billions of groups and encoding the > ACL in them... a perl script should do it :) :) :) What exactly do you mean by 'encoding the ACL in them'. Could you flesh this out a bit... perhaps including an example? Thanks! --- ------------------------------------------------------------------------- Charles Owens Email: owensc@enc.edu "I read somewhere to learn is to Information Technology Services remember... and I've learned that Eastern Nazarene College we've all forgot..." - King's X -------------------------------------------------------------------------