[6215] in Release_7.7_team
Re: relaxing permissions on psutils locker
daemon@ATHENA.MIT.EDU (Alex T Prengel)
Wed Feb 18 13:22:14 2009
Message-Id: <200902181821.n1IILUjq013797@dit.mit.edu>
To: Mitchell E Berger <mitchb@MIT.EDU>, jweiss@MIT.EDU
cc: alexp@MIT.EDU, release-team@MIT.EDU
In-Reply-To: Your message of "Wed, 18 Feb 2009 05:10:32 EST."
<200902181010.n1IAAWtP000410@byte-me.mit.edu>
Date: Wed, 18 Feb 2009 13:21:30 -0500
From: Alex T Prengel <alexp@MIT.EDU>
X-Spam-Flag: NO
X-Spam-Score: 0.00
>> >The current psutils locker has system:authuser:rl. Does anyone know
>> >if there would be a problem with adding mit rl to the ACL
>>
>> This should be OK provided that the IP ranges stay within MIT
>If there's a real issue with distributing the content to the world
>at large, you should know that if we add mit to the ACL, this means
>that the MIT webservers will suddenly have access to the files, and
>people will be able to download them (from anywhere)
>This can be thwarted if we also add a .htaccess.mit file
Thanks Mitch- Jonathon, could you please include the .htaccess.mit file?
We definitely can't make this world-accessible.
Alex