Contribution to 3.8.1pl1
Ben Lindstrom
mouring at etoh.eviladmin.org
Tue May 11 07:35:05 EST 2004
On Mon, 10 May 2004, Sergio Gelato wrote:
> * Ben Lindstrom [2004-05-10 11:18:32 -0500]:
> > > + @myusers@@myhosts is a valid entry here.
> >
> > I really hate that syntax.. It's ugly as sin.
>
> I agree it's ugly, especially the @@, but there is precedent for the use of
> @ as a netgroup name prefix (Linux NFS exports) and it does have the merit
> of avoiding accidents where a name that wasn't intended to be a netgroup
> gets interpreted as one (perhaps because someone poisoned the nscd cache,
> or something of that sort). All in all, I'd vote for keeping it despite
> its ugliness.
>
The prefix of @ does not bother me.. it is the double @@ and the idea
that @user@@host is a valid netgroup. Which breaks what netgroups
was designed for.
However, since NFS exports has different rules than {Allow/Deny}*. I
don't see why we should follow with that syntax.
- Ben
More information about the openssh-unix-dev
mailing list