From owner-freebsd-bugs  Sun Sep  7 08:51:01 1997
Return-Path: <owner-freebsd-bugs>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id IAA25759
          for bugs-outgoing; Sun, 7 Sep 1997 08:51:01 -0700 (PDT)
Received: from sax.sax.de (sax.sax.de [193.175.26.33])
          by hub.freebsd.org (8.8.7/8.8.7) with SMTP id IAA25731
          for <bugs@FreeBSD.ORG>; Sun, 7 Sep 1997 08:50:44 -0700 (PDT)
Received: (from uucp@localhost) by sax.sax.de (8.6.12/8.6.12-s1) with UUCP id RAA20137; Sun, 7 Sep 1997 17:50:43 +0200
Received: (from j@localhost)
	by uriah.heep.sax.de (8.8.7/8.8.5) id RAA12883;
	Sun, 7 Sep 1997 17:46:37 +0200 (MET DST)
Message-ID: <19970907174637.YI14181@uriah.heep.sax.de>
Date: Sun, 7 Sep 1997 17:46:37 +0200
From: j@uriah.heep.sax.de (J Wunsch)
To: bugs@FreeBSD.ORG
Cc: alainb@freegate.gna.org (Alain Brauner)
Subject: Re: bin/4448: Pb with -alldirs options in /etc/exports.
References: <19970907085129.RH39493@uriah.heep.sax.de> <Pine.BSF.3.96.970907153048.260B-100000@freegate.gna.org>
X-Mailer: Mutt 0.60_p2-3,5,8-9
Mime-Version: 1.0
X-Phone: +49-351-2012 669
X-PGP-Fingerprint: DC 47 E6 E4 FF A6 E9 8F  93 21 E0 7D F9 12 D6 4E
Reply-To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch)
In-Reply-To: <Pine.BSF.3.96.970907153048.260B-100000@freegate.gna.org>; from Alain Brauner on Sep 7, 1997 16:40:05 +0200
Sender: owner-freebsd-bugs@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

As Alain Brauner wrote:

> I have a single big root fs on one scsi disk.
> 
> I made an /export directory containing the root hierarchy of a
> NetBSD(SPARC) binaries and a SWAPFILE in order to install a Sun
> workstation via diskless boot.
> So i need the -alldirs and the -r option of mountd.
> 
> /kernel and /etc/rc.conf are properly configured for use with NFS etc ...
> 
> Here is the /etc/exports i use for this:
> 
> /export		-alldirs	-root=0

Herein lies the rub.  -alldirs can only be used on the root of a
physical filesystem (/ in your case), since it implies that all
subdirectories of this filesystem should be mountable.  Export
attributes in kernel NFS are always per physical filesystem.

So if you want to restrict it to /export, you can either:

. make /export a separate physical filesystem, and use -alldirs, or

. use something like

/export /export/foo /export/bar -root=0

(Thinking about it, this looks counter-intuitive, i agree.  But just
deleting the complaint from mountd looks too risky to me either.  This
is a very security-relevant part of the NFS system.)

-- 
cheers, J"org

joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE
Never trust an operating system you don't have sources for. ;-)