> This may sound like a weird question (and it is), but does anyone know of
> a site that has made the global /afs tree available via anonymous ftp?
Yup. Well, sort of. Our FTP server theoretically exports all of /afs,
but it also supports per-directory access control, so the effect is that
FTP users can only get at parts of AFS that (1) the (unauthenticated)
FTP server can see, and (2) are in a part of the tree that is specifically
marked as "exported".
Access control is quite simple: Any directory can contain a file named
".anonr". Such a file is a list of the immediate children of the directory
containing it that _should_ be exported. These can be files or directories;
in the latter case, the entire tree is exported. So, for example, a user
might have an FTP directory (/afs/cs.cmu.edu/user/foo/ftp), and a .anonr
file mentioning it in the directory above (/afs/cs.cmu.edu/user/foo/.anonr,
which contains a single line "ftp").
Our WWW server supports the same mechanism (in addition to more traditional
.htaccess files), so any file in AFS that can be accessed through the FTP
server can also be accessed through the HTTP servers, which at the moment
are somewhat heftier machines.
-- Jeffrey T. Hutzelman (N3NHS) <[EMAIL PROTECTED]>
Systems Programmer, CMU SCS Research Facility
Please send requests and problem reports to [EMAIL PROTECTED]
