[gpfsug-discuss] NF4 ACLs (Joshua Taylor)
Anh Dao
adao at ibm.com
Tue Sep 6 22:48:46 BST 2022
Regarding the behavior with CHOWN in Spectrum Scale, to avoid quota abuse and security exposures, we have restricted that file owners can only chown only to themselves or to a group that they are a member of. This has been noted since Scale 4.2.0:
https://www.ibm.com/docs/en/spectrum-scale/4.2.0?topic=applications-gpfs-exceptions-limitations-nfs-v4-acls
“NFS V4 allows ACL entries that grant users (or groups) permission to change the owner or owning group of the file (for example, with the chown command). For security reasons, GPFS now restricts this so that non-privileged users may only chown such a file to themselves (becoming the owner) or to a group that they are a member of.”
Regards,
Anh Dao
IBM Spectrum Scale
Software Developer
adao at ibm.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://gpfsug.org/pipermail/gpfsug-discuss_gpfsug.org/attachments/20220906/a90e8613/attachment.htm>
More information about the gpfsug-discuss
mailing list