From owner-freebsd-hackers@FreeBSD.ORG Mon Feb 9 09:03:46 2004 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 827D216A4CE for ; Mon, 9 Feb 2004 09:03:46 -0800 (PST) Received: from mailhub.fokus.fraunhofer.de (mailhub.fokus.fraunhofer.de [193.174.154.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id C30D243D1F for ; Mon, 9 Feb 2004 09:03:45 -0800 (PST) (envelope-from brandt@fokus.fraunhofer.de) Received: from beagle (beagle [193.175.132.100])i19H2oG25156; Mon, 9 Feb 2004 18:02:50 +0100 (MET) Date: Mon, 9 Feb 2004 18:02:49 +0100 (CET) From: Harti Brandt To: Dan Nelson In-Reply-To: <20040209164216.GA26419@dan.emsphone.com> Message-ID: <20040209180059.J33455@beagle.fokus.fraunhofer.de> References: <4025A0DD.2010607@acm.org> <20040208134125.L28775@beagle.fokus.fraunhofer.de> <20040209122341.S32427@beagle.fokus.fraunhofer.de> <20040209164216.GA26419@dan.emsphone.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-hackers@freebsd.org cc: Tim Kientzle Subject: Re: Odd ACL question X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Feb 2004 17:03:46 -0000 On Mon, 9 Feb 2004, Dan Nelson wrote: DN>In the last episode (Feb 09), Harti Brandt said: DN>> On Sun, 8 Feb 2004, Tim Kientzle wrote: DN>> TK>On Sat, 7 Feb 2004, Tim Kientzle wrote: DN>> TK>>Joerg Schilling's "star" archives ACLs as follows: DN>> TK>> DN>> TK>>"user::rwx,group::r--,group:mail:rw-:6,mask::rw-,other::r--" DN>> TK>> DN>> TK>>Note the "group:mail:rw-:6" entry that contains a fourth DN>> TK>>field with the uid/gid number. ... DN>> TK> DN>> TK> * If the username exists and the UID conflicts with the local DN>> TK> system, ??? DN>> TK> DN>> TK>This last case is the tough one. My temptation: map it to DN>> TK>an unused UID, issue a warning about the remap, and keep going. DN>> DN>> That may cause the problem I described. This may leave a file in a DN>> user directory that the user cannot delete without intervention of DN>> the root user, but its probably the simplest solution. What about DN>> non-existing groups? DN> DN>Any file that a user creates, that user can delete. If you're talking DN>about a root user extracting something into a user's directory, that's DN>different, but you have the same problem even without ACLs. Yes, the question was, what to do with a file whose UID does not exist on the system. And, yes, this is about the root user. If you restore a file server for a couple of hundereds or thousands of user you probably don't want to fix undeleteable (by the users) file handish. harti -- harti brandt, http://www.fokus.fraunhofer.de/research/cc/cats/employees/hartmut.brandt/private brandt@fokus.fraunhofer.de, harti@freebsd.org