Problems accessing a Linux NFS share as a normal user
Lowell Gilbert
freebsd-questions-local at be-well.ilk.org
Tue Oct 7 18:39:32 UTC 2014
Martin <greencoppermine at yandex.com> writes:
> 07.10.2014, 15:35, "Lowell Gilbert" <freebsd-questions-local at be-well.ilk.org>:
>> Martin <greencoppermine at yandex.com> writes:
>>> However, I also need to mount this on a FreeBSD box as a normal user, not root.
>>
>> Is the export marked "insecure"?
>> You'll get different port numbers for root as opposed to a normal user.
>
> What does it mean "export marked as insecure"?
Quoting the exports(5) manual page from a convenient Linux machine:
EXAMPLE
# sample /etc/exports file
/ master(rw) trusty(rw,no_root_squash)
/projects proj*.local.domain(rw)
/usr *.local.domain(ro) @trusted(rw)
/home/joe pc001(rw,all_squash,anonuid=150,anongid=100)
/pub *(ro,insecure,all_squash)
/srv/www -sync,rw server @trusted @external(ro)
/foo 2001:db8:9:e54::/64(rw) 192.0.2.0/24(rw)
/build buildhost[0-9].local.domain(rw)
The first line exports the entire filesystem to machines master
and trusty. In addition to write access, all uid squashing is
turned off for host trusty. The second and third entry show
examples for wildcard hostnames and netgroups (this is the entry
`@trusted'). The fourth line shows the entry for the PC/NFS
client discussed above. Line 5 exports the public FTP directory
to every host in the world, executing all requests under the
nobody account. The insecure option in this entry also allows
^^^^^^^^^^^^^^^
clients with NFS implementations that don't use a reserved port
for NFS. The sixth line exports a directory read-write to the
machine 'server' as well as the `@trusted' netgroup, and
read-only to netgroup `@external', all three mounts with the
`sync' option enabled. The seventh line exports a directory to
both an IPv6 and an IPv4 subnet. The eighth line demonstrates a
character class wildcard match.
More information about the freebsd-questions
mailing list