Re: [RFC] FUSE permission modell (Was: fuse review bits)

From: Anton Altaparmakov
Date: Tue Apr 12 2005 - 18:17:28 EST

Next message: Greg KH: "Re: [PATCH] usb: kfree cleanup for drivers/usb/* - no need to check for NULL"
Previous message: Esben Nielsen: "Re: [PATCH] Priority Lists for the RT mutex"
In reply to: Jamie Lokier: "Re: [RFC] FUSE permission modell (Was: fuse review bits)"
Next in thread: Daniel Jacobowitz: "Re: [RFC] FUSE permission modell (Was: fuse review bits)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 11 Apr 2005, Jamie Lokier wrote:
> Miklos Szeredi wrote:
> > That is exactly the intended effect. If I'm at my work machine (where
> > I'm not an admin unfortunately) and I mount my home machine with sshfs
> > (because FUSE is installed fortunately :), then I bloody well don't
> > want the sysadmin or some automated script of his to go mucking under
> > the mountpoint.
>
> I think that would be _much_ nicer implemented as a mount which is
> invisible to other users, rather than one which causes the admin's
> scripts to spew error messages. Is the namespace mechanism at all
> suitable for that?
>
> It would also be nice to generalise and have virtual filesystems which
> are able to present different views to different users. Can FUSE do
> that already - is the userspace part told which user is doing each
> operation? With that, the desire for virtual filesystems which cannot
> be read by your sysadmin (by accident) is easy to satisfy - and that
> kind of mechanism would probably be acceptable to all.

Yes it does. We use it to provide magic symlinks which point to different
places for different people. So we have for example a symlink called "ux"
and it points to "/servers/USERNAME/our-server/ux" where USERNAME is the
name from /etc/passwd matching the user id of the user accessing the
symlink. So in documentaion and in stupid programs which require
hardcoding of path we specify "/ux" to find the shared space but in
reality this is a different local directory for every user. (To complete
the picture the different local directories are actually the same remote
directory but mounted with access permissions for each user separately
using ncpfs.)

Best regards,

Anton
--
Anton Altaparmakov <aia21 at cam.ac.uk> (replace at with @)
Unix Support, Computing Service, University of Cambridge, CB2 3QH, UK
Linux NTFS maintainer / IRC: #ntfs on irc.freenode.net
WWW: http://linux-ntfs.sf.net/ & http://www-stu.christs.cam.ac.uk/~aia21/
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "Re: [PATCH] usb: kfree cleanup for drivers/usb/* - no need to check for NULL"
Previous message: Esben Nielsen: "Re: [PATCH] Priority Lists for the RT mutex"
In reply to: Jamie Lokier: "Re: [RFC] FUSE permission modell (Was: fuse review bits)"
Next in thread: Daniel Jacobowitz: "Re: [RFC] FUSE permission modell (Was: fuse review bits)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]