Currently, chown() on AFS is limited to the system:administrators group. Wouldn't it make sense for a user with 'admin' ACL to be able to chown() files, as long as the target ID is his own userid?
That way, automated daemons that use chown() in AFS don't have to be in system:administrators, thus limiting the things that could go wrong. -- Ryan Underwood, <[EMAIL PROTECTED]>
signature.asc
Description: Digital signature
