We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Course Of The Month
Become a Premium Member and unlock a new, free course in leading technologies each month.
Solved
NFS denying access to root
Posted on 2014-04-08
Despite specifying no_root_squash, root most definitely is getting squashed. This makes it difficult when i need to access the share as root (e.g. with Clonezilla).
Access denied to tree /bk. /etc/exports is
Access denied to tree /bk. /etc/exports is
# /etc/exports: the access control list for filesystems which may be exported
# to NFS clients. See exports(5).
#
# Example for NFSv2 and NFSv3:
# /srv/homes hostname1(rw,sync) hostname2(ro,sync)
#
# Example for NFSv4:
# /srv/nfs4 gss/krb5i(rw,sync,fsid=0,crossmnt)
# /srv/nfs4/homes gss/krb5i(rw,sync)
#
#/ 192.168.1.0/24(rw,sync,crossmnt)
/ 192.168.1.0/24(rw,sync,no_root_squash,crossmnt)
/bk 192.168.1.0/24(rw,sync,no_root_squash,crossmnt)
#/bk 192.168.1.0/24(rw,sync,crossmnt)
/mnt/mp3 192.168.1.0/24(rw,sync,crossmnt)
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
6
3
9 Comments
Active today
You need to add root=192.168.1.0/24 (rw) to the line of the NFS share you want. Or limit the systems from which these NFS partitions can be accessed as root.
Squashing and not squashing means one thing. Granting root access is another setting.
Squashing and not squashing means one thing. Granting root access is another setting.
Active today
You need to add root=192.168.1.0/24 (rw) to the line of the NFS share you want.Sorry - not quite with you there. Do you mean in /etc/exports? If so, could you show me how the file should look?
Active today
At the end of each of the lines 12,13
,root=192.168.1.0/24 (rw)
Then run exportfs -a to have the change applied.
,root=192.168.1.0/24 (rw)
Then run exportfs -a to have the change applied.
Active today
what linux are you using?
Do you have Selinux enabled?
sestatus
Usually, you do not want to nfs share the root (/)
what error are you getting when mounting or trying to access?
Do you have Selinux enabled?
sestatus
Usually, you do not want to nfs share the root (/)
what error are you getting when mounting or trying to access?
Active today
I don't think so. No sestatus command available to root, though there are seemingly 'remnants' e.g.
/lib/libselinux.so.1
/lib/libselinux.so.1
what error are you getting when mounting or trying to access?
goose@vaio:/tmp$ sudo ll h/bk/goose/clients/johnson/me/thinkstn-sysinfo.txt.gz ls: cannot access h/bk/goose/clients/johnson/me/thinkstn-sysinfo.txt.gz: Permission denied
Active today
I' m wondering if it might be because the principal (not root) user has got a sshfs mount at the same time (PKI only). Going to test that
Active today
Brainstorm i'm afraid. I didn't even have it mounted via nfs at all - only sshfs! That's why root (no PKI) couldn't access anything
Featured Post
Train for your certification. Learn the latest DevOps tools. Grow your skillset to do better work.
At Linux Academy, we release new training modules every week so you'll always be up to date on the latest tech.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Note: for this to work properly you need to use a Cross-Over network cable.
1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
In part one, we reviewed the prerequisites required for installing SQL Server vNext.
In this part we will explore how to install Microsoft's SQL Server on Ubuntu 16.04.
Learn several ways to interact with files and get file information from the bash shell.
ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month5 days, 17 hours left to enroll
626 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.