Re: [Encfs-users] symbolic links over NFS

Fri, 11 Apr 2014 11:31:36 -0700 

I resolved the issue mentioned below.

It turns out you have to be a member of the group owning the initial mount 
point to create symlinks at any level in the directory structure.

If you are not a member of this group, you can still create files and 
directories.  But not symlinks.  Even if a deeper level directory is permission 
777, you cannot create symlinks in it, unless you are a member of the group 
owning the initial mount point.  That was fun* to figure out.  (*note: fun=not 
really fun).

Hopefully this helps someone else in the future.  If this scenario was 
mentioned in any documentation, I'd be happy to be told about it to learn a new 
documentation area.

Thanks, -Tom Mapes


From: Mapes, Tom
Sent: Friday, April 11, 2014 9:39 AM
To: 'encfs-users@lists.sourceforge.net'
Subject: symbolic links over NFS

Should symbolic links for non-root users work in a data area mounted via NFS?

The encrypted data is stored on a dedicated storage device. (filer:/data/test).

On a SuSE 10.3 client, filer:/data/test is mounted in /data/test, and we 
created a /data.enc that mounts this as the decrypted data.

In /data.enc/test, we can work normally in the file system, but symbolic link 
creations fail.

Ex)
% touch one
% ln -s one two
ln: creating symbolic link `two' to `one': Permission denied

Interestingly, this same 'ln' command works OK when run via root/sudo.
Also, it works OK if all of this takes place on local file systems.  It only 
fails via NFS mounted data.

Mount Information:
fuse on /data.enc/test type fuse 
(rw,nosuid,nodev,allow_other,default_permissions)

File system / encfs info:
Version 6 configuration; created by EncFS 1.7.4 (revision 20100713)

Automount:
test -fstype=encfs,keyfile=/etc/test.key,public,nosuid :/data/test/.encfs

Any help or information on this issue would be appreciated.

Thanks, -Tom Mapes

------------------------------------------------------------------------------
Put Bad Developers to Shame
Dominate Development with Jenkins Continuous Integration
Continuously Automate Build, Test & Deployment 
Start a new project now. Try Jenkins in the cloud.
http://p.sf.net/sfu/13600_Cloudbees
_______________________________________________
Encfs-users mailing list
Encfs-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/encfs-users

Reply via email to