Default libkrb5 ccache location
Stephen Gallagher
sgallagh at redhat.com
Fri Jul 26 18:46:44 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 07/26/2013 02:40 PM, Lennart Poettering wrote:
> On Fri, 26.07.13 14:20, Simo Sorce (simo at redhat.com) wrote:
>
>> We want this thing to work by default, having normal users to
>> find out this lingering concept exist because operations that
>> currently works start failing is already a big failure.
>
> OK, this is the deal-breaker. The thing about XDG_RUNTIME_DIR is
> that it has a strict life-time. If you don't want that, then
> XDG_RUNTIME_DIR is simply not the tool for the job.
>
> (That said, I don't agree with your requirement. Earlier you said
> you want to make /tmp poly-instantiated -- which is a goal I agree
> with -- which would mean that $HOME is the *only* persistent
> storage you have)
>
Home isn't persistent in this situation, because in enterprise
use-cases, $HOME is often contained on an NFS mount relying on
Kerberos authentication. So we need to be able to keep the keying
material somewhere else. This is why we were opting for /run or /var
(with my preference being /run for the safety of purging the
credentials on power-off).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlHyxBQACgkQeiVVYja6o6P24gCggbgiu50YpX8sSGlDNJ9XGND1
rA8AoKg/ZMRIVm3qHjGEhSCubIUAM2sP
=N/CZ
-----END PGP SIGNATURE-----
More information about the devel
mailing list