Bob Dew <[EMAIL PROTECTED]> writes:
> ...
> What about DFS? Will it be possible to store a generic UNIX mail spool
> in DFS, assigning unique DFS ACLs to each UID? Can each user name in
> the spool directory be its own DFS volume? Is anybody interested in
> this type of setup?
One possibility is to take advantage of the ability of DFS to either
(a) export a local UFS partition or (b) locally mount an LFS aggregate.
In our DFS development cell, we have one Solaris server which handles
mail delivery. The server exports several LFS aggregates, one of
which has a fileset named "cell.svc.mail". This fileset is mounted in
two places: locally (as /var/mail) and in DFS (as /:/service/mail).
Sendmail runs as "root" (without any DCE authentication) and delivers
through the local mount, setting UNIX ownership and mode bits in the
usual way. Users then read their mail through the DFS mountpoint.
Unlike AFS, a DFS file's owner/group/mode have their full expected
meaning (they behave as masks when a file's ACLs is evaluated).
Amazingly, this just plain works -- root sets owner/group/mode through
the local mount point, and the globally-available /:/service/mail
looks, feels, and otherwise behaves for the user just like /var/mail
(or /usr/spool/mail) did back in the dark ages (:-)}
Caveat: disable logins on the mail delivery machine for most users,
since root can read anyone's mail through the local mount point...
------------------------------------------------------------------
Steve Lammert | Gulf Tower | Net: [EMAIL PROTECTED]
System Designer | 707 Grant Street | Voice: +1 412 338-4443
Transarc Corp. | Pittsburgh PA 15219 | FAX: +1 412 338-4404
------------------------------------------------------------------
If you have not prepared yourself beforehand to meet temptations,
then refrain from practicing virtues. -- St. Isaac the Syrian
------------------------------------------------------------------
