On Sun, Dec 5, 2010 at 22:52, Christopher D. Clausen <[email protected]> wrote:
> Are we attempting to solve a problem that no one actually has?
I am sure someone has encountered it. Someone has encountered
every problem. Whether someone reports it is another issue.
I am a proponent of delivering solutions which default
to be the "safe" and the "natural way" to operate. It results
in least astonishment.
That would include:
0) Using syslog (eventlog on Windows) as a default (it
is the "Unix" way). Every administrator already has
to deal with syslog files filling up, and managing any
archives they want to provide.
1) Services that run as root should not provide remote
execution.
That said, I have absolutely no problem with allowing
people to chose different paths, including shooting
themselves in both feet if that is what they choose to
do knowingly. There are always good reasons to
do things differently in specific environments, including
bypassing all the safeties (google "battleshort").
However, the configurations as delivered should not
default to them.
Gary
_______________________________________________
OpenAFS-info mailing list
[email protected]
https://lists.openafs.org/mailman/listinfo/openafs-info
