Fedora ticket cache location

Stephen Gallagher sgallagh at redhat.com
Mon Jun 11 10:37:01 EDT 2012


On Mon, 2012-06-11 at 10:27 -0400, Sam Hartman wrote:
> >>>>> "Stephen" == Stephen Gallagher <sgallagh at redhat.com> writes:
> 
> 
>     Stephen> Well, we're also discussing the possibility of having a link (sym- or
>     Stephen> hard-) between /run/user/<UID> and /run/user/<username>. Would that make
>     Stephen> anything easier on you?
> 
> I don't speak for MIT. I sometimes contribute to MIt Kerberos and
> maintain Kerberos for Debian. My main point here is that I think it
> would be great if we had some clarity around what we wanted here.  I
> think it would be desirable to have cross-distribution consistency for
> example.  I think all the options I proposed are relatively easy.
> Having a symlink to uid is interesting, although keep in mind that the
> mapping from username to uid is not a bijection: multiple users with
> different names can have the same uid. Obviously that's a special case,
> but I'me certainly seen it done from time to time.

When SSSD is in play, we generally enforce a one-user-to-one-UID
mapping. If there is an overlap, we'll make one an alias of the other,
so on login you will always be mapped to the primary name. So in our
case, it should be safe to create this symlink.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
Url : http://mailman.mit.edu/pipermail/krbdev/attachments/20120611/dd3a0b8f/attachment.bin


More information about the krbdev mailing list