... forgot to include info-afs on the cc...
------- Forwarded Message
Date: Sat, 1 May 1993 12:02:41 -0400
To: "Randall S. Winchester" <[EMAIL PROTECTED]>
Cc: [EMAIL PROTECTED], [EMAIL PROTECTED]
In-Reply-To: Randall S. Winchester's message of Sat, 1 May 1993 08:06:03 -0400,
<[EMAIL PROTECTED]>
Subject: Re: IP acl & system:authuser
From: "Richard Basch" <[EMAIL PROTECTED]>
I forgot to deal with the claim that the PT groups aren't flexible
enough to handle the namespace of users and machines.
Why not?
AFS 3.2a allows you to use wildcarding of hosts.
system:authuser is already a special group that automatically contains
all users. How many host entries do you have to add to the ptserver, if
you use wildcarding? Probably, it is a drop in the bucket...
Putting groups within groups would be nice, I agree... There is a
lookup cost (and rather costly), but it certainly is possible to modify
the source to do it (U.Mich. did it and we have also done it). However,
I don't see how groups within groups changes the overloading o
system:authuser problem. This is a tangential problem. [By the way, we
are NOT running the nested group environment in the Athena cell.]
-Richard
------- End Forwarded Message
