RE: Trying (failing) to limit access to one user

From: Bob Archer <Bob.Archer_at_amsi.com>
Date: Wed, 27 Apr 2011 09:30:39 -0400

> > On Tue, 2011-04-26 at 16:45 -0500, kmradke_at_rockwellcollins.com
> > wrote:
> >
> > > I've found using "*" to be non intuitive. Try:
> > >
> > > [/]
> > > $authenticated=rw
> > > jon=
> >
> > Thanks for the reply! Unfortunately, jon still has full access...
> >
> > -Alan
>
> Are you sure he has "full" access? Path based auth will not hide
> the folder names in root. He will still be able to see them.
>

Oh wait.. the above I assume jon is authenticated so he would of course have access in this case. Deny doesn't trump allow as it does in other systems. Also there is the same problem with:

[/]
*=rw
jon=

Because jon is a subset of * which gives him read/write access.

BOb
Received on 2011-04-27 15:31:10 CEST

This message: [ Message body ]
Next message: Daniel Shahaf: "Re: My full name and email address open to all on web?"
Previous message: Bob Archer: "RE: Trying (failing) to limit access to one user"
In reply to: Bob Archer: "RE: Trying (failing) to limit access to one user"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]