[251] in NetBSD-Development
Re: AFS for NetBSD-1.0_BETA available to Domestic (US) AFS site contacts
daemon@ATHENA.MIT.EDU (Charles Henrich)
Tue Dec 6 08:17:45 1994
Resent-From: John Kohl <jtk@atria.com>
Resent-To: netbsd-afs@MIT.EDU
From: Charles Henrich <henrich@crh.cl.msu.edu>
To: jtkohl@MIT.EDU
Date: Mon, 5 Dec 1994 21:12:42 -0500 (EST)
In-Reply-To: <199412060157.UAA00586@lola-granola.MIT.EDU> from "jtkohl@MIT.EDU" at Dec 5, 94 08:57:24 pm
> Well, I was mistaken about the 4th group duplication--it's a feature of
> the "id" command that it doesn't show consecutive duplicate group ID's;
> I have one of those in my grouplist.
>
> So, I think the setpag stuff is OK for now (except that you can't push a
> new PAG if your grouplist is too long).
You might also want to consider writing a wrapper for initgroups, and make sure
setgroups also cannot blow away the pag's (that should be the case with
setgroups as AFS masks that call already). With initgroups having the ability
to nuke the PAG's, you lose your "authentication" whenever starting new login
shells in X (Ugh!)
-Crh
Charles Henrich Michigan State University henrich@crh.cl.msu.edu
http://rs560.msu.edu/~henrich/
