I see what you are saying, but how would you handle a scenario with thousands of people (university students) accessing hundreds of computers in labs all over campus which they are not responsible for and cannot be bothered to manage? Is there a way of automatically forcing .XAuthority to reside in /tmp?
Thanks, eric thanks, eric --- On Thu, 3/18/10, Harald Barth <[email protected]> wrote: > From: Harald Barth <[email protected]> > Subject: Re: [OpenAFS] significant delay for afs user to login as root via su > To: [email protected] > Cc: [email protected], [email protected] > Date: Thursday, March 18, 2010, 7:59 AM > > > I'm not sure I see the value of putting a file that's > part of a > > distributed network filesystem in a local directory. > > First: The .Xauthority file is only used locally on your > machine, why > would you need it in AFS? > > Second: If we now can agree that .Xauthority does not need > to be in > AFS, why not put it in /tmp and get better security? If > /tmp is a > memory file system, the better. > > Harald. > _______________________________________________ > OpenAFS-info mailing list > [email protected] > https://lists.openafs.org/mailman/listinfo/openafs-info > _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
