[496] in SIPB-AFS-requests
Re: protections
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Wed Jul 17 14:59:50 1991
Date: Wed, 17 Jul 91 14:59:06 -0400
From: tytso@ATHENA.MIT.EDU (Theodore Ts'o)
To: Richard Basch <basch@MIT.EDU>
Cc: Marc Horowitz <marc@MIT.EDU>, sipb-afsreq@MIT.EDU, gsipbbin@MIT.EDU
In-Reply-To: Richard Basch's message of Wed, 17 Jul 91 12:55:47 -0400,
Reply-To: tytso@athena.mit.edu
Date: Wed, 17 Jul 91 12:55:47 -0400
From: Richard Basch <basch@MIT.EDU>
Incorrect. The owner of a directory has implicit "a" access on the
directory. If the directory is the root of the volume, then the user
has implicit "a" access on the entire volume. So any directories with
mode 32766 should be fixed. I am about to change the AFS sources so
that this owner check does not apply to the anonymous id (and I will
send this back to Transarc).
Is this really true? It doesn't seem to work in the SIPB cell. But
then again, maybe I'm doing something wrong. I'm sure you know a lot
more about AFS than I do.....
- Ted
<tytso@tsx-11> {/afs/sipb/project/sipbsrc/test}
90% tokens
Tokens held by the Cache Manager:
[ 1]User's (AFS ID 15806) tokens for afs@rel-eng.athena.mit.edu [Expires Jul 17 19:42]
[ 2]User's (AFS ID 15806) tokens for afs@sipb.mit.edu [Expires Jul 17 19:46]
[ 3]User's (AFS ID 15806) tokens for afs@net.mit.edu [Expires Jul 17 19:41]
[ 4]User's (AFS ID 15806) tokens for afs@athena.mit.edu [Expires Jul 17 19:41]
[ 5] --End of list--
<tytso@tsx-11> {/afs/sipb/project/sipbsrc/test}
91% ls -ald .
2 drwxr-xr-x 2 tytso 2048 Jul 17 14:55 ./
<tytso@tsx-11> {/afs/sipb/project/sipbsrc/test}
92% fs la .
Access list for . is
Normal rights:
system:anyuser rl
<tytso@tsx-11> {/afs/sipb/project/sipbsrc/test}
93% fs sa . tytso all
fs: You don't have the required access rights on '.'
