On 06/14/00 22:30:17 -0400 Esther Filderman <[EMAIL PROTECTED]> wrote:
+-----
| Ok, folks, I really feel like I'm missing something here.
|
| Almost all of our AFS-based clients have user's home directories in
| AFS. We use symlinks to "user space" on the hard disk and put the
| path in the passwd file.
|
| ie. /usr/users/2 -> /afs/psc.edu/usr/2
|
| & path in the passwd file would be /usr/users/2/fooklebarf
|
| When users log in, login picks up a token and they're in their
| home directory.
+--->8
Lots of people are missing the paragraph beginning with "Note:" in my
message. Maybe it's a bug in KTH krb4, but if you remove system:anyuser rl
its login dumps AFS users in / without a token. And AFS's login has its
own problems (notably, nonexistence on PAM-capable platforms --- which
wouldn't be a problem if (a) Transarc actually understood how to use PAM
instead of trying to convince vendors to support their fundamentally broken
"use `optional' for everything" PAM modules and (b) PAM weren't itself
fundamentally broken with respect to network authentication).
--
brandon s. allbery [os/2][linux][solaris][japh] [EMAIL PROTECTED]
system administrator [WAY too many hats] [EMAIL PROTECTED]
electrical & computer engineering KF8NH
carnegie mellon university ["better check the oblivious first" -ke6sls]
