> The basic config for nfs is this.
>
> /etc/exports
>
> /home/myth 10.10.10.9(ro,no_root_squash)
>
> This syntax gives you the directory you want to share, in this
> case /home/myth. The IP or IP's you want to be allowed to connect to the
> share. In this case my mythbox will be 10.10.10.9.
>
> ro is for read only. rw is for read write.
>
> no_root_squash is to allow root to mount the share, like if you wanted
> to put that in your /etc/fstab to have it automount on boots.
>
Not quite: "no_root_squash" gives all NFS clients root access to
the disk. Root squashing exists because in a production environment, NFS is
otherwise quite insecure (well, it's still really insecure, but oh well).
All one needs to do is install Linux on their desktop and mount up the NFS
shares from the NFS server and they would have root read/write access to the
entire volume (since they can obviously have root on the box they just built).
If you set your exports to "root_squash" then any writes or reads by the root
user from a NFS client will be "squashed" to the nobody user. In either
configuration, root can *mount* the share.
It should be noted that you can also use subnet addressing,
wildcards, and a bunch of other ways of specifying machines in the exports
file. So
/home/myth 10.10.10.9/24(ro,no_root_squash)
Would export this volume to all of the 10.10.10.* network.
"man exports" is your friend.
-poul
_______________________________________________
mythtv-users mailing list
[email protected]
http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
