Coda File System

Re: Coda security and root.

From: Samir Patel <samir_at_eden.rutgers.edu>
Date: Fri, 5 Sep 2003 12:44:58 -0400 (EDT)
On Fri, 5 Sep 2003, Jan Harkes wrote:

> Not really. Coda doesn't care user B is logged in as root. If root
> doesn't have the right ACLs the only recourse for user B would be to
> directly modify the container files in the venus cache directory. If
> he modifies those the files will not be marked as 'dirty' unless
> user B actually changes bits around in RVM (which will probably lead
> to a crash if he forgets to link the faked CMLs correctly).
>
> I didn't think that disconnection should allow user B to even read
> any files that are protected by an ACL that doesn't allow System:AnyUser
> read access to the object.

Oops, you're right.  Forgot about the default System:AnyUser rl
access.  But still kinda perturbed by the fact that System:AnyUser rl
access lets a Sys Admin (person with root) modify the files while
disconnected... which leads that volume to be inconsistent ad
infinitem, I think.

Samir
Received on 2003-09-05 12:46:18