Date: Thu, 20 Jun 1996 14:20:03 -0700 (PDT) From: J Wunsch <j@uriah.heep.sax.de> To: freebsd-bugs Subject: Re: kern/1336: Permission for .. in NFS mounts is somewhat non-intuitive Message-ID: <199606202120.OAA09694@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR kern/1336; it has been noted by GNATS. From: J Wunsch <j@uriah.heep.sax.de> To: jkh@time.cdrom.com Cc: FreeBSD-gnats-submit@freebsd.org Subject: Re: kern/1336: Permission for .. in NFS mounts is somewhat non-intuitive Date: Thu, 20 Jun 1996 21:38:31 +0200 (MET DST) As Jordan K. Hubbard wrote: > Two machines, client and server. The following permissions for /u exist > on each: > > client-> ls -lgd /u > drwxr-x--- 2 root wheel 512 Jun 19 04:02 /u > > server-> ls -lgd /u > drwxr-xr-x 2 root wheel 512 Jun 19 04:02 /u > > The following NFS mount has also been done: > > client-> mount server:/u /u > > >Description: > > If an ordinary user (e.g. not root and not in group wheel) on > the client attempts to do a pwd(1) in /u, the operation will > fail. This is nothing special to NFS mounts, it's a very generic mount problem. Try making your /usr 0700 in single-user mode, and go multi-user... You should never make mount points anything else the 755 (or 555). They are overshadowed with the mount permissions from the newly mounted resource anyway, so the actual permissions of the underlying mountpoint are largely irrelevant as long as they allow all intended access. -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199606202120.OAA09694>