[693] in Info-AFS_Redistribution

home help back first fref pref prev next nref lref last post

Re:

daemon@ATHENA.MIT.EDU (Daniel Edward Lovinger)
Tue Mar 31 21:06:48 1992

Date: Tue, 31 Mar 1992 11:40:51 -0500 (EST)
From: Daniel Edward Lovinger <dl2n+@andrew.cmu.edu>
To: info-afs@transarc.com
In-Reply-To: <128713.9203301602@uk.ac.bcc.ts>

Mike Gahan <ccaamrg@ucl.ac.uk> writes:
> He has a file which others may append to, but not overwrite. As there is no concept
> of 'append only' permission in Unix, he restricts write access to
> himself, then supplies
> a setuid program which setuids to himself to append to the file. The
> program is secure, as
> only he has write access to it. Thus his object is achieved.
> 
> How can I do this with AFS ?

	Depending on actual, as opposed to perceived requirements, an
insertable directory (permissions rli) may be sufficient. This allows
random users to create new files in the directory, but does not allow
modification.

	If you really need setuid operation, take a snapshot of

	/afs/andrew.cmu.edu/usr0/games/src/template

which is a library containing what amount to setuid operations for AFS
3. This is the library we use for setuid games here at CMU. Read the
README ... feel free to ask questions.


						dan

home help back first fref pref prev next nref lref last post