In message <[EMAIL PROTECTED]>,Frank Burkhardt writes: >My guess: The openafs-client doesn't seem to enforce the r-permission >correctly when the stat-data of the examined file is cached.
you are right. its not enforced. its not difficult to fix this. there are a couple issues. dentry lookup gets things right (which is why host2 worked) but the revalidate doesnt know that the "viewer" of the file might have changed. the dentry revalidate routine would need to be changed to always check if you still have permission to view the file. the code is there but ifdef'd out. >Is this wrong, wanted or unavoidable behaviour? this behavior could be made selectable. leaking the stat information doesnt seem too dangerous but some people are more paranoid. _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
