From owner-freebsd-current@FreeBSD.ORG  Sat Jan  8 22:34:56 2011
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id DADF9106564A
	for <freebsd-current@freebsd.org>; Sat,  8 Jan 2011 22:34:56 +0000 (UTC)
	(envelope-from marek_sal@wp.pl)
Received: from mx3.wp.pl (mx3.wp.pl [212.77.101.7])
	by mx1.freebsd.org (Postfix) with ESMTP id 6C9C58FC0C
	for <freebsd-current@freebsd.org>; Sat,  8 Jan 2011 22:34:56 +0000 (UTC)
Received: (wp-smtpd smtp.wp.pl 24534 invoked from network);
	8 Jan 2011 23:34:55 +0100
Received: from cwx170.internetdsl.tpnet.pl (HELO marekdesktop)
	(marek_sal@[83.19.131.170]) (envelope-sender <marek_sal@wp.pl>)
	by smtp.wp.pl (WP-SMTPD) with SMTP
	for <rmacklem@FreeBSD.org>; 8 Jan 2011 23:34:55 +0100
Message-ID: <C90EA7CCF380432BA1346F64D2C97649@marekdesktop>
From: "Marek Salwerowicz" <marek_sal@wp.pl>
To: <rmacklem@FreeBSD.org>
Date: Sat, 8 Jan 2011 23:34:50 +0100
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-2";
	reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.5931
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.5994
X-WP-AV: skaner antywirusowy poczty Wirtualnej Polski S. A.
X-WP-SPAM: NO 0000000 [4aPs]                               
X-Mailman-Approved-At: Sun, 09 Jan 2011 11:52:36 +0000
Cc: freebsd-current@freebsd.org
Subject: NFSv4 and pam_mount - mounting user home directories.
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Jan 2011 22:34:56 -0000

Hi,

1. I have a NFSv4-enabled server with /etc/exports like:
V4: / -sec=sys
/home/stud -sec=sys

/etc/rc.conf:

nfs_server_enable=YES
nfsv4_server_enable=YES
nfsuserd_enable=YES

Is it possible to run ONLY NFSv4 server (without NFSv3 compatibility) ?

2. On a client station I installed pam_mount module in order to mount home directory from server automatically during logging in to 
station.
I would like to mount it via NFSv4.

In pam_mount.conf.xml I inserted:
<volume fstype="nfs" server="free" pgrp="stud" path="/home/stud/%(USER)" mountpoint="/home/stud/%(USER)" />
<volume fstype="nfs" server="free" pgrp="prac" path="/home/prac/%(USER)" mountpoint="/home/prac/%(USER)" />
<nfsmount>mount_nfs -o nfsv4 %(SERVER):%(VOLUME) %(MNTPT)</nfsmount>

And it  works, but:

On a client station every user can be root, and I don't want even root to be able to mount user's home directories without giving a 
password (via mount_nfs command)- is it possible?

After mounting there is a strange UID and GID:

ls -la
total 472
drwxr-xr-x  10 32767  32767       1024  8 sty 23:00 ./
drwxr-xr-x   9 root   wheel        512  1 wrz  2009 ../
-rw-------   1 32767  32767          0 12 cze  2010 .Xauthority
drwxr-xr-x   3 32767  32767        512 12 cze  2010 .cache/
-rw-------   1 32767  32767      68693  8 sty 21:11 .hist
-rw-------   1 32767  32767          0 11 cze  2010 .history

the UID should be 700.

-- 
Marek Salwerowicz