On Tue, Jan 13, 2009 at 05:38:03PM -0600, Nicolas Williams wrote: > On Tue, Jan 13, 2009 at 11:18:00PM +0000, Darren J Moffat wrote: > > I'm a little concerned that the privileges part is very OpenSolaris > > specific. Assuming it stays the way it is don't we need a file_flag_set > > privilege as well or is that covered by NFSv4 attribute operations ? > > I excluded that one because I didn't know what NFSv4 concept it maps > well onto, if any. But yes, I even left a comment in the I-D about how > we need reviewers with direct experience with fine-grained privileges on > other operating systems. > > Still, that said, there aren't very many other ways to break down > privilege in an NFSv4 context...
Oh, and you may have noticed how I tried to generalize the PRIV_FILE_DAC_WRITE "all privileges are required to write files owned by UID 0 in the absence of an effective UID of 0" contraint. That is a Solaris-ism, though really probably applicable to Unix and Unix-like systems generally, but not so much to Windows, and in any case, why stop at files owned by UID 0? Thus my attempt to generalize it by not specifying "files owned by UID 0" or "root" or whathaveyou. Nico --
