From owner-freebsd-current@FreeBSD.ORG  Thu Oct 12 18:11:45 2006
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
X-Original-To: freebsd-current@freebsd.org
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2D35016A4F5
	for <freebsd-current@freebsd.org>; Thu, 12 Oct 2006 18:11:45 +0000 (UTC)
	(envelope-from nomad@castle.org)
Received: from castle.org (castle.org [207.178.4.54])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A20BA43DE2
	for <freebsd-current@freebsd.org>; Thu, 12 Oct 2006 18:07:56 +0000 (GMT)
	(envelope-from nomad@castle.org)
Received: from [128.208.232.198] (vanyel.ee.washington.edu [128.208.232.198])
	(authenticated bits=0)
	by castle.org (8.13.8/8.13.6) with ESMTP id k9CI7poF008509
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <freebsd-current@freebsd.org>; Thu, 12 Oct 2006 11:07:52 -0700 (PDT)
	(envelope-from nomad@castle.org)
Message-ID: <452E8471.8020104@castle.org>
Date: Thu, 12 Oct 2006 11:07:45 -0700
From: Lee Damon <nomad@castle.org>
User-Agent: Thunderbird 1.5.0.5 (Macintosh/20060719)
MIME-Version: 1.0
To: freebsd-current@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Status: No, score=0.0 required=5.0 tests=none autolearn=failed 
	version=3.1.5
X-Spam-Checker-Version: SpamAssassin 3.1.5 (2006-08-29) on castle.org
Subject: NFS (v3) exports limited by netgroup crash mountd
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Oct 2006 18:11:45 -0000

I have a netgroup with some 200 or so hosts listed in it.  When I add it 
as an export control on a single file system it slows mountd down a bit 
but not badly.

However, if I add it to more than a few file systems in /etc/exports 
mountd becomes very slow in replying and eventually gives up and dies.

It doesn't matter if the netgroup is obtained out of /etc/netgroup or a 
NIS map.  The behavior is exactly the same either way.

The problem exists on 6.1-STABLE as well as 6.2-PRERELEASE compiled last 
night.

I'd really like to get this working.  The idea of exporting hundreds of 
user home directories without at least limiting what hosts they can talk 
to makes me very nervous.  Yes, I know NFS = No F***ing Security but I'd 
still like to make *some* attempt at reasonableness.  Limiting to 
network isn't sufficient, there are lots of students with laptops 
plugging in everywhere.

Any hints or ideas?

thanks,
nomad