(Illustration by Gaich Muramatsu)
On Fri, 5 Sep 2003, Jan Harkes wrote: > Not really. Coda doesn't care user B is logged in as root. If root > doesn't have the right ACLs the only recourse for user B would be to > directly modify the container files in the venus cache directory. If > he modifies those the files will not be marked as 'dirty' unless > user B actually changes bits around in RVM (which will probably lead > to a crash if he forgets to link the faked CMLs correctly). > > I didn't think that disconnection should allow user B to even read > any files that are protected by an ACL that doesn't allow System:AnyUser > read access to the object. Oops, you're right. Forgot about the default System:AnyUser rl access. But still kinda perturbed by the fact that System:AnyUser rl access lets a Sys Admin (person with root) modify the files while disconnected... which leads that volume to be inconsistent ad infinitem, I think. SamirReceived on 2003-09-05 12:46:18