[zfs-discuss] NFS access by OSX clients (was Cores vs. Speed?)
There's also questions of case sensitivity, locking, being mounted at boot time rather than login time, accomodating more than one user. I've also heard SMB is far slower. The Macs I've switched to automounted NFS are causing me less trouble. If you are in a ``share almost everything'' situation, just add umask 000 to /etc/launchd.conf and reboot. How are you managing UID's on the NFS server? If user eharvey connects to server from client Mac A, or Mac B, or Windows 1, or Windows 2, or any of the linux machines ... the server has to know it's eharvey, and assign the correct UID's etc. When I did this in the past, I maintained a list of users in AD, and duplicate list of users in OD, so the mac clients could resolve names to UID's via OD. And a third duplicate list in NIS so the linux clients could resolve. It was terrible. You must be doing something better? How do you manage your NFS exports? Do all the clients have static assigned IP's, or do you simply export to the whole subnet, or do you do something else? I would consider it a security risk, if any schmo could take any unused IP address, connect to the server, and claim to be eharvey without any problem. Also, I had a umask problem, which presumably you've got solved by the launchd.conf edit. Presumably this umask applies, whether you create a folder in Finder, or create a file in MS Word, or save a new text file from TextEdit ... The umask is applied to every file and every folder creation, regardless of which app is doing the creation, right? ___ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
Re: [zfs-discuss] NFS access by OSX clients (was Cores vs. Speed?)
On Feb 8, 2010, at 4:58 PM, Edward Ned Harvey macenterpr...@nedharvey.com wrote: How are you managing UID's on the NFS server? If user eharvey connects to server from client Mac A, or Mac B, or Windows 1, or Windows 2, or any of the linux machines ... the server has to know it's eharvey, and assign the correct UID's etc. When I did this in the past, I maintained a list of users in AD, and duplicate list of users in OD, so the mac clients could resolve names to UID's via OD. And a third duplicate list in NIS so the linux clients could resolve. It was terrible. You must be doing something better? The way I did this type of integration in my environment was to setup a Linux box with winbind and have NIS make maps just pull out the UID ranges I wanted shared over NIS with all passwords blanked out. Then all -nix based systems use NIS+Kerberos. I suppose one could do the same with LDAP, but winbind has the advantage of auto-creating UIDs based on the user's RID+mapping range which saves A LOT of work in creating UIDs in AD. -Ross ___ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
[zfs-discuss] NFS access by OSX clients (was Cores vs. Speed?)
There's also questions of case sensitivity, locking, being mounted at boot time rather than login time, accomodating more than one user. I've also heard SMB is far slower. The Macs I've switched to automounted NFS are causing me less trouble. If you are in a ``share almost everything'' situation, just add umask 000 to /etc/launchd.conf and reboot. How are you managing UID's on the NFS server? If user eharvey connects to server from client Mac A, or Mac B, or Windows 1, or Windows 2, or any of the linux machines ... the server has to know it's eharvey, and assign the correct UID's etc. When I did this in the past, I maintained a list of users in AD, and duplicate list of users in OD, so the mac clients could resolve names to UID's via OD. And a third duplicate list in NIS so the linux clients could resolve. It was terrible. You must be doing something better? How do you manage your NFS exports? Do all the clients have static assigned IP's, or do you simply export to the whole subnet, or do you do something else? I would consider it a security risk, if any schmo could take any unused IP address, connect to the server, and claim to be eharvey without any problem. Also, I had a umask problem, which presumably you've got solved by the launchd.conf edit. Presumably this umask applies, whether you create a folder in Finder, or create a file in MS Word, or save a new text file from TextEdit ... The umask is applied to every file and every folder creation, regardless of which app is doing the creation, right? ___ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
