2012/9/7 Gordon Ross <gordon.w.r...@gmail.com>: > I'd also be curious what are the exact circumstances where you saw > idmap change its mapping for some SID to a different ephemeral ID. > Note that TTL expiration does not cause a mapping to be destroyed. It > only causes it to be re-checked via name lookup rules, etc.
James didn't saw that, it was me. > That re-check should not come up with a different ID unless something > in the configuration changed, i.e. a new explicit mapping where one > did not exist before. If you saw something else happen, that might > be a bug. I think it boils down to: was the whole idmap stuff designed to be used with setuid/seteuid? I guess not. And it's this use case where I see unwanted behaviour which is probably not a bug, but misuse. -f _______________________________________________ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss