[OpenIndiana-discuss] NFS4 users
Gabriele Bulfon
gbulfon at sonicle.com
Tue Sep 27 14:52:12 UTC 2011
Hi, I did a little more tests on this, and something appears strange.
The server offering the NFS share, ha only its own users in passwd/group/shadow.
The offered filesystem has been created through a "nfs3" transfer from the original client holding
the content. So if I go to these folders with the new hosting machine, I find folders showing uid and gid
because it doesn't have any match for them. Some of them are the imap folders (cyrus), others are
cvs folders and mercurial folders.
When I mount them as NFS4 from the original machine, some of them are translated into nobody,
some of them are not.
For example, cyrus is not a user on the nfs server, and there is no uid at all.
But on the client I can see the correct mapping to cyrus:mail.
Same for cvs users.
This is not true for mercurial users nor postgres and mysql, that are converted into nobody.
What am I missing? If what you said is true, I should find also cyrus as nobody.
Gabriele.
----------------------------------------------------------------------------------
Da: David Brodbeck
A: Discussion list for OpenIndiana
Data: 26 luglio 2011 19.51.25 CEST
Oggetto: Re: [OpenIndiana-discuss] NFS4 users
On Tue, Jul 26, 2011 at 7:29 AM, Gabriele Bulfon
wrote:
Hi, is there any way to let NFS4 server not require the same users of the
client to exist on the server??
I noticed that the root access on an NFS4 server, let me chmod on any user
who's id exists on the server,
wether it is same name or not. Any chmod to a uid not existent on the
server, is changed to nobody...
For example, I shared a filesystem, and filled it with an original
filesystem, through NFS3.
If I mount it with vers=3, I get all the correct permissions from the
client view, wether they exist or not
on the server.
If I mount the same share with vers=4, I get correct permissions only for
files with uid existent on the
server (even if different names), all the others files get the user
nobody............
I want to use NFS4, because I noticed that locking management is much
better, and cyrus does not
complain. But this permission limitation is annoying.
Any idea?
As far as I know this isn't possible with NFSv4. The NFSv4 spec requires
sending names, not uid numbers, over the wire. If the server and client
can't agree on the name, it won't work. NFSv3 sends uid numbers over the
wire, so it doesn't have this requirement.
One solution to this is to implement NIS or LDAP so that all your machines
see a unified set of users.
--
David Brodbeck
System Administrator, Linguistics
University of Washington
_______________________________________________
OpenIndiana-discuss mailing list
OpenIndiana-discuss at openindiana.org
http://openindiana.org/mailman/listinfo/openindiana-discuss
More information about the OpenIndiana-discuss
mailing list