[6111] in Kerberos
Re: AFS and Common Desk Top
daemon@ATHENA.MIT.EDU (Derek Atkins)
Thu Nov 2 14:10:01 1995
Date: Thu, 2 Nov 1995 13:57:25 -0500
From: Derek Atkins <warlord@MIT.EDU>
To: "Doug Engert" <DEEngert@anl.gov>, harris@email.unc.edu (Trey Harris)
Cc: <HARRIS@email.unc.edu>, kerberos@MIT.EDU, <INFO-AFS@transarc.com>,
<INFO-DFS@transarc.com>
In-Reply-To: "[4228] in Info-AFS_Redistribution"
How many groups are you in? On most platforms, the PAG is stored as
special entries in the first two groups. However if you have too many
groups, you will not be able to get a PAG, so AFS will default to
using the UID.
It is quite possible that what is happening is that you have too many
groups so a new PAG cannot be created. In that case, AFS is getting
you a token under your UID. That means that any process with your uid
will have access to your tokens, which explains why all of your
session gets your tokens.
This would also explain why your tokens remained across multiple
sessions.
-derek
