NFS anon-uid won't take effect in a group membership

Issues related to configuring your network
Post Reply
Peedy2495
Posts: 1
Joined: 2018/12/27 17:21:50

NFS anon-uid won't take effect in a group membership

Post by Peedy2495 » 2018/12/27 18:08:36

Hello,

now, I have to permit different credentials of services to different shared folders. share(a-z)
For example, I created a group "dsharea" and a folder "/path/sharea" with following perms:

Code: Select all

$ chown foo:dsharea /path/sharea
$ chmod g+rwxs /path/sharea
$ setfacl -d -m o::x /path/sharea/
$ setfacl -d -m g::rwx /path/sharea/
after this, the user "nfsnobody" and another service-users has been added to the group "dsharea".

excerpts:

Code: Select all

ls -al /path
drwxrws--x+  6 foo    dsharea  4096 27. Dez 17:43 sharea

Code: Select all

getfacl /path/sharea
getfacl: Entferne führende '/' von absoluten Pfadnamen
# file: path/sharea/
# owner: foo
# group: dsharea
# flags: -s-
user::rwx
group::rwx
other::--x
default:user::rwx
default:group::rwx
default:other::--x

Code: Select all

cat /etc/exports
/path/sharea	192.168.0.*(rw,sync,no_subtree_check,root_squash,all_squash)
I'm only able to mount this share by setting user-ownerships of files/dirs to "nfsnobody"
But different services will write files with their own username.
The explained group-construction is working for the rest of services.

My OS: Linux [mydomain] 3.10.0-957.1.3.el7.x86_64 #1 SMP Thu Nov 29 14:49:43 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux

Any Idea?

Regards ... Peedy

Post Reply