Solved

Best way to mount remote home directories

Posted on 2004-04-22
12
231 Views
Last Modified: 2010-03-18
Hi!

Ok, I have a difficult problem:
We have a Gentoo Linux/Solaris 2.8 environment. Our user's home directories are on the Solaris box and are being used via NFS.
We are not happy with NFS anymore, so we are looking for alternatives. We were thinking about Samba. The authentication happens via NIS.
What is the best way to automatically map the remote home directories for each user when he/she logs in. (for example via SSH or directly at the workstation).
I guess the mapping of the home directory for each user must happen before the system-logon is complete because config files reside in the the home dirs (.zprofile, for example).
Please help me with specific answers. Stuff like "you could use AFS", doesn't help, I know that myself. I need a spefic answer to my specific problem.

Thank you so much!
0
Comment
Question by:teewurstmann
  • 6
  • 2
  • 2
12 Comments
 
LVL 8

Expert Comment

by:da99rmd
ID: 10887686
Just set the samba to use the NIS for auth and then just run a normal mount script to mount the dir.
net use H: \\conmpname\sharename

/Rob
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10887694
Sry that was windows mount :)
/usr/bin/smbclient \\\\compname\\share <pass>

/rob
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10887759
I think i must be drunk :/
/usr/sbin/smbmount //your-nt-box-name/home /home/$USER
man smbmount for more details.
Dont realy know the perfect place to put the command.

/Rob
0
 

Author Comment

by:teewurstmann
ID: 10887785
Thank you for your replies, but that's not helping.
I don't have an NT box. I only have Linux and Solaris boxes.
And the users shouldn't have to mount anything themselves, it should happen automatically when they log in.
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10888087
Yes but thats the command to use in Linux but im investigating where to put it because the reason you sad your self, that some of the settings files f.ex. .tcshrc and .bashrc is in the users home directory.

And it has to be mounted before the user cwd to that dir in the login script.

Why arent you pleased with nfs ?

/Rob
0
New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

 
LVL 8

Expert Comment

by:da99rmd
ID: 10889326
I getting old the best way to mount the home dirs is to mount the all users sirectorys f.ex.
if you have your users home dir on the server in /home/users
then just mount the /home/users at startup of the clients thn you dont have to remount the dirs at every login.

This is the way they mount home dirs at work(but they run nfs):
home:/export/homes/di99   /home/di99  nfs   hard,intr,grpid,quota,proto=udp,nosuid,dev=49c16c3 1082643518
My home dir is f.ex. /home/di99/di99rmd and all this is mounted at startup.

/Rob
0
 
LVL 40

Expert Comment

by:jlevie
ID: 10889406
Using Samba to access home dirs on the Solaris server is going to slower and cause a higher load on the Solaris server than using NFS would be.

Why are you "not happy with NFS anymore"?
0
 

Author Comment

by:teewurstmann
ID: 10896840
Thanks for all of your responses so far.
Well, to be honest, I don't really know why my boss doesn't want to use NFS anymore. I think he said that Samba is "more secure". Is that true?
And Rob: Thanks for all your replies, but once again: It's not just about the starting of the client _machine_, the home dirs should also be mapped correctly if I just SSH directly into the Solaris box.

0
 
LVL 40

Accepted Solution

by:
jlevie earned 250 total points
ID: 10901855
There is a security advantage to an SMB share if, and only if, the client is a windows box (assuming the shares are password protected). When a windows box maps a share it supplies the authentication information from the logged on user. And since a windows box doesn't provide for (in the general case) simultaneous logins only the authenticated user will be able to see the mapped drive. At logout any mapped share are unmapped and the next user can't see anything from the previous user.

However,  Linux/Unix machines do allow simultaneous logins. So it is possible for someone logged in or su'd to root to see anything the machine can see. Even if the NFS server restricts access to exported volumes so that root can't see the data root can always "su some-user" and see the data. Consequently there's no security advantage to SMB shares when using Linux/Unix workstations.
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10916068
>And Rob: Thanks for all your replies, but once again: It's not just about the starting of the client _machine_, the home >dirs should also be mapped correctly if I just SSH directly into the Solaris box.

They will be, because they are always mounted on all machines from bootup untill shutdown.

/Rob
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now