From mboxrd@z Thu Jan 1 00:00:00 1970 Mime-Version: 1.0 (Apple Message framework v619.2) In-Reply-To: <1ae7aeda5561f403475aea19a6f0b493@proxima.alt.za> References: <1ae7aeda5561f403475aea19a6f0b493@proxima.alt.za> Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <65ce4516c890a7cc231be49f75689b0e@ar.aichi-u.ac.jp> Content-Transfer-Encoding: 7bit From: arisawa@ar.aichi-u.ac.jp Subject: Re: [9fans] factotum & invalid entries Date: Mon, 7 Feb 2005 17:09:27 +0900 To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu> Topicbox-Message-UUID: 410a5394-eace-11e9-9e20-41e7f4b1d025 some miscommunication probably because of my sketchy explanation. My image is term% cat /mnt/factotum/ctl key proto=p9sk1 dom=aichi-u.ac.jp user=arisawa !password? key proto=p9sk1 dom=aichi-u.ac.jp user=bootes !password? disabled key proto=p9sk1 dom=inside.plan9.bell-labs.com user=arisawa !password? key proto=p9sk1 dom=grid.bell-labs.com user=arisawa !password? term% Factotum knows attribute value list is useless or not. If the list is confirmed useless in authentication process, I would like disabled is put at the beginning. Next time I will fix the problem and put key proto=p9sk1 dom=outside.plan9.bell-labs.com user=arisawa !password? then I will get term% cat /mnt/factotum/ctl key proto=p9sk1 dom=aichi-u.ac.jp user=arisawa !password? key proto=p9sk1 dom=aichi-u.ac.jp user=bootes !password? key proto=p9sk1 dom=outside.plan9.bell-labs.com user=arisawa !password? key proto=p9sk1 dom=grid.bell-labs.com user=arisawa !password? term% If I put wrong user name, say alice instead of arisawa, then factotum is not authenticated. therefore we will get: term% cat /mnt/factotum/ctl key proto=p9sk1 dom=aichi-u.ac.jp user=arisawa !password? key proto=p9sk1 dom=aichi-u.ac.jp user=bootes !password? key proto=p9sk1 dom=outside.plan9.bell-labs.com user=arisawa !password? key proto=p9sk1 dom=grid.bell-labs.com user=arisawa !password? disabled key proto=p9sk1 dom=outside.plan9.bell-labs.com user=alice !password? term% Wrong user name does no harm The current problem is in that factotum put every data even if the data is confirmed invalid. The above is rough sketch. we should examine more. Kenji Arisawa