[olug] Anyone want Netware/NT style ACLs for Linux?
Aaron Grothe
grothe at earthlink.net
Tue Oct 24 17:14:17 UTC 2000
Hey Guys,
> > > I found what looks to be the leading implementation:
> > > http://acl.bestbits.at/
The trustees project http://www.braysystems.com/linux/trustees.html is more
based on the Novell style ACLs. In our experiments it has been more stable.
We had some problems with bestbits, not honoring ACLs.
Bestbits does however implement the posix standard (withdrawn) for acls. So
it is more compatible with Solaris/Irix and so on.
LIDS http://www.lids.org is also doing some cool work. E.g. an audit trail
which even root can only append to, unkillable processes and so on. They do
this through the creation of a new super administrator which operates
separately from root.
> > Is it on track to be brought into the kernel?
Bestbits has the best shot at making the kernel as it follows the proposed
posix standard. Before something of this nature will be accepted into the
kernel it will be quite a bit of time along the lines of 1-2 years at least.
I think the best bet is for something along the lines of xfs, jfs, ext3fs to
come along and have the support natively for it. Bestbits hacked some of the
information into the system we really didn't like.
> > Have you used this stuff on any production machines?
We've used each of the above systems on test machines. We are planning on
using LIDS when we update our web server later this year.
Regards,
Aaron
=-=-=
"The Journey is the Reward" - Old Zen Buddhist Saying
---------------------------------------------------------------------
To unsubscribe, e-mail: olug-unsubscribe at bstc.net
For additional commands, e-mail: olug-help at bstc.net
More information about the OLUG
mailing list