[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [OpenAFS-devel] Re: MEMORY credential cache interop between Heimdal and MIT?

On Thu, Aug 30, 2007 at 09:42:39PM -0400, Ken Hornstein wrote:
> Just so we're clear: I think a kernel solution is preferrable.  But I
> was given the task to solve the problems associated with Kerberos tickets
> on disk NOW, dammit, so cajoling various vendors into developing a solution
> and waiting the couple of years it would have taken to get that into
> their products was simply not an option.

Again, I don't understand _why_ a kernel solution is preferable.  Why
tart up the kernel with a bunch of junk code (which from my point of
view is _precisely_ what the "magic groups" PAG implementation does)
when the inheritance semantics of MAP_ANON mmap mappings are already
exactly what you want?

  Thor Lancelot Simon	                                     tls@rek.tjls.com

  "The inconsistency is startling, though admittedly, if consistency is to
   be abandoned or transcended, there is no problem."	      - Noam Chomsky