From: "Benjamin Huntsman" <BHuntsman@mail2.cu-portland.edu>
To: "Fans of the OS Plan 9 from Bell Labs" <9fans@9fans.net>
Subject: Re: [9fans] permissions
Date: Sun, 17 Oct 2010 12:59:04 -0700 [thread overview]
Message-ID: <621112A569DAE948AD25CCDCF1C075332999FE@dolly.ntdom.cupdx> (raw)
In-Reply-To: <b93762966de1d684ad29c8d3b39b2397@bellsouth.net>
[-- Attachment #1: Type: text/plain, Size: 1416 bytes --]
>...Plus, there's a chicken and
>egg problem. The server which gives you /dev/sd00/nvram
>has to approve of the attach when fossil wants to open its
>/dev/sd00/fossil, but until fossil has opened it, there's no
>way of knowing what's in /adm/users on that particular fossil.
>
>So for in-kernel file servers, it's best to look at them as hostowner
>and world and forget about groups. For lib9p based servers,
>you can link in a different implementation of hasperm() and
>get whatever permissions checking you want, but the default
>behavior is to assume that the named group has exactly one
>member: the group leader.
Thank you for the clarification. That's exactly what I'm getting at.
As you stated, /dev/sd00/* gets set up (especially where it's the only disk)
before we have any idea of what the users/groups look like. Then, when you do
a ls -l, it will show you users and groups that are listed in /adm/users.
Chicken-and-egg, just like you said. Of course, that lands us in the current
situation, where you can't tweak things such that 100% of all administration
activities can be performed remotely via drawterm... for some stuff like setting
up disks, one still has to use the local physical terminal.
Don't get me wrong... I'm not complaining or finger-pointing; I'm just trying to
fully understand the current state before attempting to poke at it.
Thanks much!!
-Ben
[-- Attachment #2: winmail.dat --]
[-- Type: application/ms-tnef, Size: 3172 bytes --]
next prev parent reply other threads:[~2010-10-17 19:59 UTC|newest]
Thread overview: 29+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-10-17 5:35 Benjamin Huntsman
2010-10-17 6:00 ` Skip Tavakkolian
2010-10-17 6:19 ` erik quanstrom
2010-10-17 6:36 ` Benjamin Huntsman
2010-10-17 13:59 ` erik quanstrom
2010-10-17 16:01 ` blstuart
2010-10-17 16:11 ` erik quanstrom
2010-10-17 17:17 ` ron minnich
2010-10-17 18:11 ` Benjamin Huntsman
2010-10-17 18:18 ` erik quanstrom
2010-10-17 19:17 ` blstuart
2010-10-17 19:59 ` Benjamin Huntsman [this message]
2010-10-17 20:40 ` blstuart
2010-10-17 21:22 ` Benjamin Huntsman
2010-10-17 22:56 ` erik quanstrom
2010-10-18 9:00 ` Steve Simon
2010-10-18 9:29 ` dave.l
2010-10-18 9:34 ` Bruce Ellis
2010-10-18 11:07 ` Dave Eckhardt
2010-10-18 11:11 ` Bruce Ellis
2010-10-17 22:58 ` blstuart
2010-10-19 18:18 ` Nathaniel W Filardo
2010-10-17 23:00 ` erik quanstrom
-- strict thread matches above, loose matches on Subject: below --
2001-10-18 14:28 Russ Cox
2001-10-23 20:34 ` Matthew Hannigan
2001-10-24 8:44 ` Douglas A. Gwyn
2001-10-18 14:00 Russ Cox
2001-10-18 14:12 ` Lucio De Re
2001-10-18 13:56 Lucio De Re
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=621112A569DAE948AD25CCDCF1C075332999FE@dolly.ntdom.cupdx \
--to=bhuntsman@mail2.cu-portland.edu \
--cc=9fans@9fans.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).