I think you want to do some googling about root squashing in Linux in this case.
On Wed, Mar 18, 2009 at 4:07 PM, Harry Putnam <reader at newsguy.com> wrote: > Blake <blake.irvin at gmail.com> writes: > >> There are many smaller programs that use nfs or interact with it (zfs, >> sharemgr, etc). ?What specific information are you looking for? ?That >> might be helpful to those responding with advice for you. >> > >> Reading the manpage for zfs (man zfs in the terminal) will be of use, >> I think. ?Look for the section on 'sharenfs'. ?(You can search in a >> manpage with the '/' character, followed by a search term). > > Sorry for not including more info but after posting here I initiated a > a discussion on the `networking' list. (or maybe first posted there). > > My problem is the other way round... not exporting a zfs share but > mounting a share offered by a linux server. > > The export line on the server was originally as below: > > ?/pub ? ? ?192.168.0.1/24(rw,sync,no_subtree_check) > > Attempting to mount it invoked this error message (wrapped for mail): > > ?# mount -F nfs -o ro 192.168.0.2:/pub /pub > ?nfs mount: security mode does not match the server \ > ? ? ? ? ? ? ?exporting 192.168.0.2:/pub > > Jamec C. ?On the Networking list found a bug report for redhat linux > that indicated the problem is a difference in the linux and solaris > implementation of NFS and further that adding this option would allow > the mount: > > ? ?`sec=sys' > > And it does. ?So got past that. ?Now I'm trying to figure out how to > get the mount to be writable by my user `reader'. > > The mount point is owned by that user. but the mounted fs ends up > UID 1000 GID staff. > > My users is not allowed to write there. > > I stumbled through mount_nfs and didn't really see options that would > allow root to make the mount and set permissions such that my user > could write there. > > So I thought maybe that user could invoke the mount to begin with but > that causes this error: > > ?mount -F nfs ?192.168.0.2:/pub /pub > ?nfs mount: insufficient privileges > > The mount point on client and the mounted fs on server are owned by > the same user `reader:wheel' on both ends. > > I'm very ignorant of the various security mechanisms on solaris with > profiles and roles etc... so haven't seen how to make this happen. > > > _______________________________________________ > opensolaris-help mailing list > opensolaris-help at opensolaris.org >
