Solved

Best way to mount remote home directories

Posted on 2004-04-22
12
270 Views
Last Modified: 2010-03-18
Hi!

Ok, I have a difficult problem:
We have a Gentoo Linux/Solaris 2.8 environment. Our user's home directories are on the Solaris box and are being used via NFS.
We are not happy with NFS anymore, so we are looking for alternatives. We were thinking about Samba. The authentication happens via NIS.
What is the best way to automatically map the remote home directories for each user when he/she logs in. (for example via SSH or directly at the workstation).
I guess the mapping of the home directory for each user must happen before the system-logon is complete because config files reside in the the home dirs (.zprofile, for example).
Please help me with specific answers. Stuff like "you could use AFS", doesn't help, I know that myself. I need a spefic answer to my specific problem.

Thank you so much!
0
Comment
Question by:teewurstmann
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 2
  • 2
12 Comments
 
LVL 8

Expert Comment

by:da99rmd
ID: 10887686
Just set the samba to use the NIS for auth and then just run a normal mount script to mount the dir.
net use H: \\conmpname\sharename

/Rob
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10887694
Sry that was windows mount :)
/usr/bin/smbclient \\\\compname\\share <pass>

/rob
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10887759
I think i must be drunk :/
/usr/sbin/smbmount //your-nt-box-name/home /home/$USER
man smbmount for more details.
Dont realy know the perfect place to put the command.

/Rob
0
Don't Cry: How Liquid Web is Ensuring Security

WannaCry is just the start. Read how Liquid Web is protecting itself and its customers against new threats.

 

Author Comment

by:teewurstmann
ID: 10887785
Thank you for your replies, but that's not helping.
I don't have an NT box. I only have Linux and Solaris boxes.
And the users shouldn't have to mount anything themselves, it should happen automatically when they log in.
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10888087
Yes but thats the command to use in Linux but im investigating where to put it because the reason you sad your self, that some of the settings files f.ex. .tcshrc and .bashrc is in the users home directory.

And it has to be mounted before the user cwd to that dir in the login script.

Why arent you pleased with nfs ?

/Rob
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10889326
I getting old the best way to mount the home dirs is to mount the all users sirectorys f.ex.
if you have your users home dir on the server in /home/users
then just mount the /home/users at startup of the clients thn you dont have to remount the dirs at every login.

This is the way they mount home dirs at work(but they run nfs):
home:/export/homes/di99   /home/di99  nfs   hard,intr,grpid,quota,proto=udp,nosuid,dev=49c16c3 1082643518
My home dir is f.ex. /home/di99/di99rmd and all this is mounted at startup.

/Rob
0
 
LVL 40

Expert Comment

by:jlevie
ID: 10889406
Using Samba to access home dirs on the Solaris server is going to slower and cause a higher load on the Solaris server than using NFS would be.

Why are you "not happy with NFS anymore"?
0
 

Author Comment

by:teewurstmann
ID: 10896840
Thanks for all of your responses so far.
Well, to be honest, I don't really know why my boss doesn't want to use NFS anymore. I think he said that Samba is "more secure". Is that true?
And Rob: Thanks for all your replies, but once again: It's not just about the starting of the client _machine_, the home dirs should also be mapped correctly if I just SSH directly into the Solaris box.

0
 
LVL 40

Accepted Solution

by:
jlevie earned 250 total points
ID: 10901855
There is a security advantage to an SMB share if, and only if, the client is a windows box (assuming the shares are password protected). When a windows box maps a share it supplies the authentication information from the logged on user. And since a windows box doesn't provide for (in the general case) simultaneous logins only the authenticated user will be able to see the mapped drive. At logout any mapped share are unmapped and the next user can't see anything from the previous user.

However,  Linux/Unix machines do allow simultaneous logins. So it is possible for someone logged in or su'd to root to see anything the machine can see. Even if the NFS server restricts access to exported volumes so that root can't see the data root can always "su some-user" and see the data. Consequently there's no security advantage to SMB shares when using Linux/Unix workstations.
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10916068
>And Rob: Thanks for all your replies, but once again: It's not just about the starting of the client _machine_, the home >dirs should also be mapped correctly if I just SSH directly into the Solaris box.

They will be, because they are always mounted on all machines from bootup untill shutdown.

/Rob
0

Featured Post

The Orion Papers

Are you interested in becoming an AWS Certified Solutions Architect?

Discover a new interactive way of training for the exam.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question