Managing ACL's on device nodes
David Zeuthen
david at fubar.dk
Wed Feb 7 10:55:20 PST 2007
On Wed, 2007-02-07 at 10:40 -0800, Artem Kachitchkine wrote:
> > So for this I envision that hal will maintain a state file of ACL's
> > granted somewhere in /var/run/hald, say /var/run/hal/acls_granted. On
> > startup of hal we process this file and removes the ACL's previously
> > added (want to be careful not to remove ACL's not granted by HAL).
>
> ACLs aren't cumulative, are they? I.e. if HAL sets the ACL, then
> something else sets the same ACL, then HAL unsets it, the ACL is unset.
I think that's true yes. Do you envision this being a problem though?
Also, if you can share, I'm curious how permissions are currently
handled on OpenSolaris.
David
More information about the hal
mailing list