[521] in arla-drinkers
Re: Arla 0.20 and linux 2.2-pre9, misc problems, probably not kernel specific
daemon@ATHENA.MIT.EDU (Magnus Ahltorp)
Sun Jan 24 16:03:17 1999
From owner-arla-drinkers@stacken.kth.se Sun Jan 24 21:03:14 1999
Return-Path: <owner-arla-drinkers@stacken.kth.se>
Delivered-To: arla-drinkers-mtg@bloom-picayune.mit.edu
Received: (qmail 1585 invoked from network); 24 Jan 1999 21:03:12 -0000
Received: from unknown (HELO sundance.stacken.kth.se) (130.237.234.41)
by bloom-picayune.mit.edu with SMTP; 24 Jan 1999 21:03:12 -0000
Received: (from majordom@localhost)
by sundance.stacken.kth.se (8.8.8/8.8.8) id VAA12315
for arla-drinkers-list; Sun, 24 Jan 1999 21:58:30 +0100 (MET)
Received: from turbot.pdc.kth.se (turbot.pdc.kth.se [130.237.221.42])
by sundance.stacken.kth.se (8.8.8/8.8.8) with ESMTP id VAA12311
for <arla-drinkers@stacken.kth.se>; Sun, 24 Jan 1999 21:58:25 +0100 (MET)
Received: (from d95-mah@localhost)
by turbot.pdc.kth.se (8.8.7/8.8.7) id VAA22985;
Sun, 24 Jan 1999 21:58:02 +0100 (MET)
To: "Neulinger, Nathan R." <nneul@umr.edu>
Cc: arla-drinkers@stacken.kth.se
Subject: Re: Arla 0.20 and linux 2.2-pre9, misc problems, probably not kernel specific
References: <9DA8D24B915BD1118911006094516EAF019C7E74@umr-mail02.cc.umr.edu>
From: Magnus Ahltorp <map@stacken.kth.se>
Date: 24 Jan 1999 21:58:02 +0100
In-Reply-To: "Neulinger, Nathan R."'s message of "Sun, 24 Jan 1999 14:33:18 -0600"
Message-ID: <ixdlnise6cl.fsf@turbot.pdc.kth.se>
Lines: 31
X-Mailer: Gnus v5.6.45/Emacs 19.34
Sender: owner-arla-drinkers@stacken.kth.se
Precedence: bulk
> It seems to be working ok for me.
Great.
> I do notice one problem. It appears that Arla treats PAG's differently than
> transarc's AFS. If I do an su to root while logged in, with a token, I no
> longer have the token, or the pag, in the su'd session:
That is because your su throws away the secondary groups:
> infinity(49)>id
> uid=5879(nneul) gid=5000(afsuser) groups=33536,32512,5000(afsuser)
> infinity(50)>su -
> Password:
> [root@infinity /root]# id
> uid=0(root) gid=0(root)
> groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
Here, the 33536,32512 has been thrown away, and therefore you are
assumed to be in the default PAG.
> Yes, I am using a mixture of transarc excutables and AFS, but only to
> demonstrate the problem. Might be good if arla included a tokens executable.
> Probably is easy enough to write, in fact, I believe I have the code lying
> around somewhere to do it.
If you use the kth-krb kerberos distribution, your klist is able to do
this (klist -T).
/Magnus
map@stacken.kth.se
