Contribution to 3.8.1pl1

Ben Lindstrom mouring at etoh.eviladmin.org
Tue May 11 07:35:05 EST 2004



On Mon, 10 May 2004, Sergio Gelato wrote:

> * Ben Lindstrom [2004-05-10 11:18:32 -0500]:
> > > +             @myusers@@myhosts is a valid entry here.
> >
> > I really hate that syntax.. It's ugly as sin.
>
> I agree it's ugly, especially the @@, but there is precedent for the use of
> @ as a netgroup name prefix (Linux NFS exports) and it does have the merit
> of avoiding accidents where a name that wasn't intended to be a netgroup
> gets interpreted as one (perhaps because someone poisoned the nscd cache,
> or something of that sort). All in all, I'd vote for keeping it despite
> its ugliness.
>

The prefix of @ does not bother me.. it is the double @@ and the idea
that @user@@host is a valid netgroup.  Which breaks what netgroups
was designed for.

However, since NFS exports has different rules than {Allow/Deny}*.  I
don't see why we should follow with that syntax.

- Ben




More information about the openssh-unix-dev mailing list