xfs
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Access control lists

from [Timothy Shimmin] [Permanent Link][Original]
To: "Orn E. Hansen" <oe.hansen@xxxxxxxxxxxxxxxxxxx>, Seth Mos <knuffie@xxxxxxxxx>, Juha Saarinen <juha@xxxxxxxxxxxx>, Jan-Frode Myklebust <janfrode@xxxxxxxxxxxxxxx>
Subject: Re: Access control lists
From: Timothy Shimmin <tes@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Mon, 25 Jun 2001 13:43:40 +1000
Cc: linux-xfs@xxxxxxxxxxx
In-reply-to: <01062412392901.01807@citadel.oehansen.pp.se>; from oe.hansen@gamma.telenordia.se on Sun, Jun 24, 2001 at 12:39:29PM +0200
References: <01062412392901.01807@citadel.oehansen.pp.se> <20010624135750.A20895@ii.uib.no> <Pine.BSI.4.10.10106241810590.12216-100000@xs4.xs4all.nl> <Pine.LNX.4.33.0106250832420.1922-100000@vimfuego.saarinen.org> <01062412392901.01807@citadel.oehansen.pp.se> <Pine.BSI.4.10.10106241810590.12216-100000@xs4.xs4all.nl> <01062412392901.01807@citadel.oehansen.pp.se>
Sender: owner-linux-xfs@xxxxxxxxxxx 
Hi Orn,

On Sun, Jun 24, 2001 at 12:39:29PM +0200, Orn E. Hansen wrote:
> 
>   I don't know if this is relevant, but I'm using linux 2.4.3, compiled with 
> XFS support.  And had a few starting problems, first was that the kernel hung 
> up on me, if I didn't compile ACL cupport into the kernel along with XFS.  
> This is not mentioned in the howto.  
Probably because it should work.
How exactly did you create your XFS kernel ?

> The second, is the use of the acl :-)
>   I've got the XFS file system mounted under /opt/xfs ... and then I've got 
> the following file in that directory:
> -rw-r--r--    1 root     root           46 Jún 24 12:16 testing               
> It's parent directory looks like this:
> drwxrwxrwx    2 root     root           20 Jún 24 12:16 xfs
> Anybody can write to the directory... now the acl of the file testing looks 
> like this:
>  /opt/xfs/testing []                                                         
> And then another user logs in, and edits the file with 'vi' and writes with 
> ':w!' this is what it looks like after that ordeal:
> -rw-r--r--    1 asta     users          21 Jún 24 12:27 testing               
> Then I try setting access control... to see if its the missing acl that is 
> the problem.
> /opt/xfs/testing [u::rw-,g::r--,o::r--,u:oehansen:rw-,m::r--]                
> and make root the owner again... and again, the user asta tries to edit the 
> file:
> -rw-r--r--    1 asta     users          29 Jún 24 12:32 /opt/xfs/testing     
> I think this is a major concern...
> Sincerely,
>   Orn

Jan-Frode answered this well.

On Sun, Jun 24, 2001 at 01:57:50PM +0200, Jan-Frode Myklebust wrote:
> > And then another user logs in, and edits the file with 'vi' and writes with 
> > ':w!' this is what it looks like after that ordeal:
> > 
> 
> I believe 'vi' overrides the file permissions by 
> deleting and creating a new file, which is allowed
> by the directory permission. Try it on a ext2
> filesystem, and you should get the same results.

Try using something simpler than vi, such as
 touch 
or 
 echo blah >file
they won't work as the file is not deleted prior to
attempting to write to it.

On Mon, Jun 25, 2001 at 08:33:06AM +1200, Juha Saarinen wrote:
> On Sun, 24 Jun 2001, Seth Mos wrote:
> 
> > Maybe the Australia XFS people can comment on this. I believe they
> > understand acls the best in regard to XFS. But It's not quite monday over
> > there yet.
> 
> It is now! But those lazy Aussie bludgers haven't got out of bed yet...
> ;-)
:)

I doesn't often pay to reply too quickly to emails, otherwise
you miss out on other's replying, such as Jan-Frode ! :)


BTW, a question for you, Juha:
Q: What is a Hindu ?
A: It lays eggs, eh.
;-)

Cheers,
Tim.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Update, Micah Yoder
Next by Date:  /dev/sound, Dusan
Previous by Thread:  Re: Access control lists, Juha Saarinen
Next by Thread:  Re: Access control lists, Örn E. Hansen
Indexes:  [Date] [Thread] [Top] [All Lists]