On 18-Aug-99 Wilfredo Sanchez wrote: > I'm trying to support a user experience similar to Mac OS using > BSD underneath (for Mac OS version 10). The goal being simplicity > for the user, which I think might interest some FreeBSD users as well > as my customers.
Right.. sorry, I didn't mean to sound rude :) > | map (like NIS)? > And what happens accross NIS domains? Design failure :) I suppose you could carry a UID, GID mapping on the disks, and have mount look out for it.. If you had a 'removable disk' flag in /etc/fstab, then have the kernel look for those files, and use umapfs with them on the mounted FS. It could be rather dangerous security wise though.. Maybe have an option somewhere else (sysctl?) that tells mount wether removable disks are allowed to have files that are executable/devices/s[ug]id on it. (ie automatically have -o noexec,nosuid,nodevice done automatically based on user prefs) If there where no mapping files on the disk have a default setting.. Perhaps you could 'sign' the files on the disk so that when you inserted it, it checked the mapping files where signed by someone so you could opt to trust certain people, and have less restrictive options for their disks. You could even have it so it asks for your key phrase (thinking pgp/ssh terms) when you insert the disk so you can verify the person, which would prevent someone getting a disk trusted by you and modifying it and using it in your machine. Ahh, the complexities are endless :) --- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum
pgp7B5q3NN7QE.pgp
Description: PGP signature
