We would like to use AFS to provide a centralized directory to our users across architectures. One problem that we see with sharing a single HOME directory via AFS is with dot files, like .forward. The various deamons would need to be authenicated to systems administrator in order to access them which could introduce a security hole if the token was left alive for long periods. Another approach would be to create a directory within each users HOME directory, e.g. called ~/shared and have that linked to the afs directory assigned to that user. This has several advantages. If the file server that contains a users directory were unavailable then at least they would still be able to log on and get some work done without too much disruption. Would anyone like to share their thoughts and experiences regarding this? Michael Ganzberger
