ACLtorture and code checking tool

Andrew Bartlett abartlet at
Fri Jun 17 10:25:20 GMT 2005

On Fri, 2005-06-17 at 11:42 +0200, Christoph Klein wrote:
> Hi Jerry,
> On Thu, Jun 16, 2005 at 02:40:24PM -0500, Gerald (Jerry) Carter wrote:
> > Chris, do you mean implementation a new ACL model for an existing
> > Linux filesystem ?  Or do you mean implementing a new mapping
> > of Windows ACLs onto file system acls?
> No, IMHO the posix_acl code within samba does the best it can to map
> between the worlds. But i think that a lot of people have more
> complicated setups, and need finer grained rights. And to compete as a
> fileserver with windows a windowish ACL model is a must. Thats why i
> want to implement this new system. I plan to write a lsm module module
> to have the kernel code fs independent.

See the ntacl-lsm module in lorikeet.  This is how we are trying to
handle this in Samba4.  I'm told we need some more kernel-side hooks

Talk to tpot about it, and how it can be finished off.  It will be good
to see this area moving again!

Andrew Bartlett

Andrew Bartlett                      
Samba Developer, SuSE Labs, Novell Inc.
Authentication Developer, Samba Team 
Student Network Administrator, Hawker College
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url :

More information about the samba-technical mailing list