> Once the root directory is changed, they can no longer reach /afs.
> You cannot define a chroot point that is in afs space (as far as I
> can tell).
You can, and it is actually your only chance. You will need copies in
AFS space of all the libraries and binaries you are going to use. This
is pretty easy with anonymous FTP, which doesn't need more than /bin/ls
and /lib/libc.a, and perhaps some fake /etc/passwd and /etc/group. If
you chroot to /afs/ThisCell/ftp, you just need the bin, lib, and etc
subdirectories and a mount point called afs for volume root.afs. If you
need more stuff, or in particular if you need devices, you can resort
to the amazing fact that root can mount local directories over
directories in AFS space.
--
Michael Niksch TEL: +41-1-7248-913
IBM Zurich Research Laboratory FAX: +41-1-7103608
Saeumerstrasse 4 SMTP: [EMAIL PROTECTED]
CH-8803 Rueschlikon / Switzerland RSCS: NIK at ZURICH
