> man exports ``` Regarding -alldirs, because NFS mount filehandles are filesystem wide the -alldirs option applies to exports of the entire filesystem -- even mount points that are higher up elsewhere in the directory hierarchy. Hence if the server has a filesystem /export and you wished to export the sub- directory
/export/root/client -alldirs client.foo.com you must realize that this also allows mounts to be requested against other locations in the /export filesystem; thus the host client.foo.com is also permitted to mount the directory /export/root/client2 if it exists. ``` Suppose you are legally bound by the following local policy: 1. /archive is subject to daily backups; 2. all exported folders must be /archive subfolders; 3. not all subfolders of /archive can be exported; 4. each exported folder has limited visibility (e.g. LAN group A can only access /archive/A, LAN group B can only access /archive/B) If you write an export folder outside /archive, you go to jail because of policy #2. If you use --alldirs, you go to jail because of policy #3 and #4. What do you do?
