Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.
Solved
NFS denying access to root
Posted on 2014-04-08
Despite specifying no_root_squash, root most definitely is getting squashed. This makes it difficult when i need to access the share as root (e.g. with Clonezilla).
Access denied to tree /bk. /etc/exports is
Access denied to tree /bk. /etc/exports is
# /etc/exports: the access control list for filesystems which may be exported
# to NFS clients. See exports(5).
#
# Example for NFSv2 and NFSv3:
# /srv/homes hostname1(rw,sync) hostname2(ro,sync)
#
# Example for NFSv4:
# /srv/nfs4 gss/krb5i(rw,sync,fsid=0,crossmnt)
# /srv/nfs4/homes gss/krb5i(rw,sync)
#
#/ 192.168.1.0/24(rw,sync,crossmnt)
/ 192.168.1.0/24(rw,sync,no_root_squash,crossmnt)
/bk 192.168.1.0/24(rw,sync,no_root_squash,crossmnt)
#/bk 192.168.1.0/24(rw,sync,crossmnt)
/mnt/mp3 192.168.1.0/24(rw,sync,crossmnt)
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
6
3
9 Comments
Active today
You need to add root=192.168.1.0/24 (rw) to the line of the NFS share you want. Or limit the systems from which these NFS partitions can be accessed as root.
Squashing and not squashing means one thing. Granting root access is another setting.
Squashing and not squashing means one thing. Granting root access is another setting.
Active today
You need to add root=192.168.1.0/24 (rw) to the line of the NFS share you want.Sorry - not quite with you there. Do you mean in /etc/exports? If so, could you show me how the file should look?
Active today
At the end of each of the lines 12,13
,root=192.168.1.0/24 (rw)
Then run exportfs -a to have the change applied.
,root=192.168.1.0/24 (rw)
Then run exportfs -a to have the change applied.
Active today
what linux are you using?
Do you have Selinux enabled?
sestatus
Usually, you do not want to nfs share the root (/)
what error are you getting when mounting or trying to access?
Do you have Selinux enabled?
sestatus
Usually, you do not want to nfs share the root (/)
what error are you getting when mounting or trying to access?
Active today
I don't think so. No sestatus command available to root, though there are seemingly 'remnants' e.g.
/lib/libselinux.so.1
/lib/libselinux.so.1
what error are you getting when mounting or trying to access?
goose@vaio:/tmp$ sudo ll h/bk/goose/clients/johnson/me/thinkstn-sysinfo.txt.gz ls: cannot access h/bk/goose/clients/johnson/me/thinkstn-sysinfo.txt.gz: Permission denied
Active today
I' m wondering if it might be because the principal (not root) user has got a sshfs mount at the same time (PKI only). Going to test that
Active today
Brainstorm i'm afraid. I didn't even have it mounted via nfs at all - only sshfs! That's why root (no PKI) couldn't access anything
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Setting up Secure Ubuntu server on VMware
1. Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions.
2. Power on th…
It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
Learn several ways to interact with files and get file information from the bash shell.
ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
Suggested Courses
Course of the Month8 days, 11 hours left to enroll
721 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.