Re: OpenAFS trouble
David,
* David Z Maze <dmaze@debian.org> [2003-May-19 10:51 AKDT]:
> > Here'w what happens on the client machine (enemy):
> >
> > cswingle@enemy:~$ tokens
> >
> > Tokens held by the Cache Manager:
> >
> > User's (AFS ID 1112) tokens for afs@frontier.iarc.uaf.edu
> > --End of list--
>
> (Are your tokens expired? When I run 'tokens', it includes an
> expiration date:
Sorry. I accidentally chopped those off when I pasted the command in
here. I do get the [Expires] message, and I'm well within that period.
> Can you peek into things that don't have restrictive permissions?
> Like, /afs/frontier is probably system:anyuser rl, can you ls there?
Yep. I can view /afs/frontier and /afs/frontier/user, but can't view
"my" volume under user.
> You could also conceivably have really bizarre things going on, like
> your home directory having permissions set to an IP acl; you might try
> 'fs la /afs/frontier/user/cswingle' from the machine that works, but
> it probalby won't say anything enlightening.
Here's what it says from the machine that works:
$ fs la /afs/frontier/user/cswingle
Access list for /afs/frontier/user/cswingle is
Normal rights:
system:administrators rlidwka
cswingle rlidwka
and from the machine that doesn't:
fs: You don't have the required access rights on
'/afs/frontier/user/cswingle'
(what you'd expect, I suppose)
There isn't any sort of host level key exchange going on is there? Do I
need to tell the server machine about my hosts somewhere?
Thanks,
Chris
--
Christopher S. Swingley email: cswingle@iarc.uaf.edu
IARC -- Frontier Program Please use encryption. GPG key at:
University of Alaska Fairbanks www.frontier.iarc.uaf.edu/~cswingle/
Reply to: