Subject: Re: Support for ACLs
From: Ignatios Souvatzis <firstname.lastname@example.org>
Date: 03/10/2001 11:54:39
On Thu, Mar 08, 2001 at 11:47:54AM -0800, Greywolf wrote:
> ACLs are on a per-inode basis, and have the potential to really screw up
> ffs if not done right. It will, as noted, probably affect portability,
> as systems which don't recognize ACLs will probably find a bunch of un-
> claimed blocks or other inconsistencies on running fsck.
Fine with me. Big userids dont work on "ancient" systems, either (e.g.,
the AMigaOS "BFFS" version 1.3 would damange netbsd-1.1 and later filesystems
as it only understood newfs -o filesystems). If you want to mount a ACLed
filesystem image, use an ACL kernel. If you want to share a medium with
an old system don't ACL its filesystem. There are bigger security problems
with carrying filesystems around than ACL availability; you'd need encrypted
files for that IMO.