| 1 |
On Tue, 2022-01-04 at 03:38 +0000, Sam James wrote: |
| 2 |
> |
| 3 |
> ACL is kind of similar to what Ionen said for PAM, i.e. sometimes |
| 4 |
> people may want to turn it off and it makes sense to expose |
| 5 |
> this option for those who do, but we don't need to try support it. |
| 6 |
> |
| 7 |
|
| 8 |
This is another important one. It has security implications, is highly |
| 9 |
confusing, requires kernel support, and is nonstandard as a USE flag |
| 10 |
and as an implementation. Most people should have it off to avoid |
| 11 |
surprises, but disabling it in the kernel can make the userland |
| 12 |
software complain when explicitly built with ACL support. |
Archives