Remote mount permission question

Lennart Sorensen lsorense-1wCw9BSqJbv44Nm34jS7GywD8/FfD2ys at public.gmane.org
Mon May 26 20:57:24 UTC 2008


On Mon, May 26, 2008 at 12:45:50PM -0400, E K wrote:
> Suppose I mounted a samba or NFS share as root on my local machine
> (as root) and the share is owned by user dj group dj who is an
> ordinary user on the server. Let there be a subdirectory with
> permission 700 under the share that I mounted. Logically, I should
> not have access to that directory on the server (since the permision
> on the server does not allow access to anyone but the owner.)
> 
> However, what I have observed is that the local permission over-rides
> the remote permision and since I mounted the share as root, I can do
> whatever I want with that directory or any subdirectory of it. Isn't
> that a huge security problem? Or am I missing something here?

An NFS root MUST be an actual full permission location.  Essentially
that location on the NFS server becomes owned by that specific machine.
So no root squash or other funny business.

I highly doubt you could make it use samba.

-- 
Len Sorensen
--
The Toronto Linux Users Group.      Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists





More information about the Legacy mailing list