[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [OpenAFS-devel] Re: MEMORY credential cache interop betweenHeimdal and MIT?

To: heimdal-discuss@sics.se, u+openafsdev-sr55@chalmers.se
Subject: Re: [OpenAFS-devel] Re: MEMORY credential cache interop betweenHeimdal and MIT?
From: Michael B Allen <miallen@ioplex.com>
Date: Thu, 30 Aug 2007 10:40:36 -0400
Cc: u+openafsdev-sr55@chalmers.se, "Henry B. Hotz" <hotz@jpl.nasa.gov>, Heimdal discuss <heimdal-discuss@sics.se>, OpenAFS Devel<openafs-devel@openafs.org>
In-Reply-To: <20070830073941.GA5381@pappardelle.tekno.chalmers.se>
List-Archive: <http://list.sics.se/sympa/arc/heimdal-discuss>
List-Help: <mailto:sympa@sics.se?subject=help>
List-Id: <heimdal-discuss.sics.se>
List-Owner: <mailto:heimdal-discuss-request@sics.se>
List-Post: <mailto:heimdal-discuss@sics.se>
List-Subscribe: <mailto:sympa@sics.se?subject=subscribe%20heimdal-discuss>
List-Unsubscribe: <mailto:sympa@sics.se?subject=unsubscribe%20heimdal-discuss>
Organization: IOPLEX Software
References: <A44562DD-4EE8-48E1-B562-BA4D0F74B7D5@jpl.nasa.gov><46D4D0CD.3050003@highlandsun.com><20070828223248.a5e62570.miallen@ioplex.com><46D4DEAA.1030407@highlandsun.com><20070828231655.f17fa922.miallen@ioplex.com><46D4EE4C.8070405@highlandsun.com><46D4F025.50600@highlandsun.com><20070829120921.f8fe84e1.miallen@ioplex.com><46D5A2F3.3010603@highlandsun.com><F422B16A-AFED-4DC2-AEEA-2D2F08A8895B@jpl.nasa.gov><20070830073941.GA5381@pappardelle.tekno.chalmers.se>
Reply-To: heimdal-discuss@sics.se, Michael B Allen <miallen@ioplex.com>

On Thu, 30 Aug 2007 09:39:41 +0200
u+openafsdev-sr55@chalmers.se wrote:

> PAGs are supposed to be handy, but they contradict the basic *nix design,
> which is built around uid as the main credential.
> So they are controversial by nature.

A uid is not a credential. Maybe back in 1984 it was but now it's just
a user identifier and it's not even good at that. In fact I would say
that little number is at the source of this thread and a LOT of other
problems from network identity management to access control. By claiming
you shouldn't contradict a design that is now clearly not adequate simply
because that is what people are still using is odd.

Mike

Follow-Ups:
- Re: [OpenAFS-devel] Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: u+openafsdev-sr55@chalmers.se

References:
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Howard Chu <hyc@highlandsun.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Michael B Allen <miallen@ioplex.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Howard Chu <hyc@highlandsun.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Michael B Allen <miallen@ioplex.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Howard Chu <hyc@highlandsun.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Howard Chu <hyc@highlandsun.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Michael B Allen <miallen@ioplex.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: Howard Chu <hyc@highlandsun.com>
- Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
- Re: [OpenAFS-devel] Re: MEMORY credential cache interop between Heimdal and MIT?
  - From: u+openafsdev-sr55@chalmers.se

Prev by Date: Re: [OpenAFS-devel] Re: MEMORY credential cache interop between Heimdal and MIT?
Next by Date: Re: [OpenAFS-devel] Re: MEMORY credential cache interop between Heimdal and MIT?
Prev by thread: Re: [OpenAFS-devel] Re: MEMORY credential cache interop between Heimdal and MIT?
Next by thread: Re: [OpenAFS-devel] Re: MEMORY credential cache interop between Heimdal and MIT?
Index(es):
- Date
- Thread