UID mapping for NFS
Bill Davidsen
davidsen at tmr.com
Sat Mar 13 23:11:30 UTC 2010
Wolfgang S. Rupprecht wrote:
> Bill Davidsen <davidsen at tmr.com> writes:
>> I have a few systems on site which have common users installed with
>> "wrong" UID values from the rest of the machines, and particularly
>> those installed from a "live" CD which created one or more odd IDs
>> when "install to disk" was used.
>
> In theory NFSv4 does the remapping, but I coudn't find it either. It
> was far easier and faster to run a "find / -user uid -print" and just fix
> up the uids.
>
The problem is that it becomes painfully complex, before I can make 'joe' user
500 I have to move the user who is 500 to another uid... and as you say nfs4
seems to support a lookup security model.
The issue may be that nfs4 doesn't seem to be working, mount.nfs4 gives a
failure, so perhaps job one will be to find out why the export isn't working.
NFS is so insecure by nature that it would be nice not to fight pseudo-security.
> It is things like this I miss from netbsd and openbsd. They assigned
> UID's to all their packages (eg. rpm's) and it didn't matter which order
> one installed things in, the UID's were always the same.
>
Thanks for the thoughts, I will keep looking.
> -wolfgang
--
Bill Davidsen <davidsen at tmr.com>
"We have more to fear from the bungling of the incompetent than from
the machinations of the wicked." - from Slashdot
More information about the users
mailing list