Can Any one give me some design documents of samba.

Mayers, Philip J p.mayers at ic.ac.uk
Fri Mar 30 10:06:22 GMT 2001 

Oh, I quite agree. I went through a period of thinking "hey, they're cool",
but then I had to design an ACL system recently (for a hostname/ip database
actually) and came up with a Posix-like system. The NT ACL system is too
painful to live.

The most useful feature about them: The inheritance. The ability to change a
single ACL and have it propagate down the tree *and* still maintain more
specific permissions lower down (or not, if you've turned off inheritance)
would make the Posix ACLs perfect. But maybe too *complex*...

Regards,
Phil

+----------------------------------+
| Phil Mayers, Network Support     |
| Centre for Computing Services    |
| Imperial College                 |
+----------------------------------+  

-----Original Message-----
From: Jeremy Allison [mailto:jeremy at valinux.com]
Sent: 30 March 2001 10:29
To: Mayers, Philip J
Cc: 'Matt Zinkevicius'; 'samba-technical at samba.org'
Subject: Re: Can Any one give me some design documents of samba.


On Fri, Mar 30, 2001 at 10:12:29AM +0100, Mayers, Philip J wrote:
> <offtopic>
> 
> But in Unix *everything* is a file (except shared memory, which is gross,

Only sysV shared memory. mmap is fine as a file :-).

> The Unix way of doing access to COM objects would be via a FIFO I suspect,
> which can exist in the filesystem and therefore be protected by ACLs.
> Delegation could be done either by passing credentials (like a Kerberos
> ticket) or in-kernel Unix credentials in the case of a kernel that
supports
> uid/gid passing across FIFOs
> 
> NT however has at least 10 different kinds of objects (that I can think
off
> offhand) and their ACLs stem from that background. I'm not saying either
> model is better or worse, just pointing out the whys.

But NT has no decent tools to manage the ACLS on these
objects. Only the ACL editor, which actually hides most
of the flexibility of the underlying ACL system and dumbs
it down enough that people only get "very confused" instead
of "hopelessly confused" :-). Until W2K there was no way 
to even *display* a "DENY" entry correctly in the ACL editor. So
what was the point of having them ?

I'm sorry. Having worked with NT ACLs for over 5 years now,
and having to write the POSIX ACL mapping have left me with
deep psychological scars (and the odd twitch :-) when talking
about the NT ACL design :-) :-).

Jeremy.

-- 
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------

More information about the samba-technical mailing list