- <para>Lustre 1.6 introduced root squash functionality, a security feature which controls super user access rights to an Lustre file system. Before the root squash feature was added, Lustre users could run <literal>rm -rf *</literal> as root, and remove data which should not be deleted. Using the root squash feature prevents this outcome.</para>
- <para>The root squash feature works by re-mapping the user ID (UID) and group ID (GID) of the root user to a UID and GID specified by the system administrator, via the Lustre configuration management server (MGS). The root squash feature also enables the Lustre administrator to specify a set of client for which UID/GID re-mapping does not apply.</para>
+ <para>Root squash is a security feature which restricts super-user access rights to a Lustre
+ file system. Without the root squash feature enabled, Lustre file system users on untrusted
+ clients could access or modify files owned by root on the file system, including deleting
+ them. Using the root squash feature restricts file access/modifications as the root user to
+ only the specified clients. Note, however, that this does <emphasis>not</emphasis> prevent
+ users on insecure clients from accessing files owned by <emphasis>other</emphasis>
+ users.</para>
+ <para>The root squash feature works by re-mapping the user ID (UID) and group ID (GID) of the
+ root user to a UID and GID specified by the system administrator, via the Lustre configuration
+ management server (MGS). The root squash feature also enables the Lustre file system
+ administrator to specify a set of client for which UID/GID re-mapping does not apply.</para>