> >Concerning the reopen problem of files created in world writable dire= >ctories: >One may use the following algorithm: >First compute the permissions of the newly created file. >For every permission granted to the user or group, check whether the = >corresponding identity-privilege is set. If not, the permission also = >has to be granted for everyone. If this is not the case, file creatio= >n is denied.
`Uhm, this requires the anonymous user to have all its files world read//write which is a non-starter if you ask me. >With following this algorithm, every file we were able to open, we ar= >e also able to reopen. Yes, but that requires changing code so programs like "vi" and library routines like mktemp() no longer function. Casper _______________________________________________ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
