Code to hide inaccessible files/directories

Robert Watson rwatson at
Tue Apr 17 20:15:13 GMT 2001

On Tue, 17 Apr 2001, Simo Sorce wrote:

> Just as a reminder, access (under linux) uses the real uid for testing
> not effective uid.  As most of teh code now (HEAD) runs with real uid 0
> and effective = users uid access will never fail (eg access will be ever
> granted) 

I believe that actually, this is the behavior specified in ISO/IEC
9945-1:1990 (POSIX.1), and should be the case for all compliant operating
systems.  We've been considering introducing two new calls, eaccess() and
feaccess() that make use of the effective uid and gid rather than the real
uid and gid in FreeBSD.  These calls would still suffer from races if used
improperly, but would allow for cleaner failure modes for
compound-operations, and have utility in a number of situations. 

Robert N M Watson             FreeBSD Core Team, TrustedBSD Project
robert at      NAI Labs, Safeport Network Services

More information about the samba-technical mailing list