nfs_selinux(8) NFS SELinux Policy documentation nfs_selinux(8)NAME
nfs_selinux - Security Enhanced Linux Policy for NFS
DESCRIPTION
Security Enhanced Linux secures the NFS server via flexible mandatory access control.
BOOLEANS
SELinux policy is customizable based on the least level of access required. SELinux can be configured to not allow NFS to share files. If
you want to share NFS partitions, and only allow read-only access to those NFS partitions, turn the nfs_export_all_ro boolean on:
setsebool -P nfs_export_all_ro 1
If you want to share files read/write you must set the nfs_export_all_rw boolean.
setsebool -P nfs_export_all_rw 1
These booleans are not required when files to be shared are labeled with the public_content_t or public_content_rw_t types. NFS can share
files labeled with the public_content_t or public_content_rw_t types even if the nfs_export_all_ro and nfs_export_all_rw booleans are off.
If you want to use a remote NFS server for the home directories on this machine, you must set the use_nfs_home_dirs boolean:
setsebool -P use_nfs_home_dirs 1
system-config-selinux is a GUI tool available to customize SELinux policy settings.
AUTHOR
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
SEE ALSO selinux(8), chcon(1), setsebool(8)dwalsh@redhat.com 9 Feb 2009 nfs_selinux(8)
Check Out this Related Man Page
nfs_selinux(8) NFS SELinux Policy documentation nfs_selinux(8)NAME
nfs_selinux - Security Enhanced Linux Policy for NFS
DESCRIPTION
Security Enhanced Linux secures the NFS server via flexible mandatory access control.
BOOLEANS
SELinux policy is customizable based on the least level of access required. SELinux can be configured to not allow NFS to share files. If
you want to share NFS partitions, and only allow read-only access to those NFS partitions, turn the nfs_export_all_ro boolean on:
setsebool -P nfs_export_all_ro 1
If you want to share files read/write you must set the nfs_export_all_rw boolean.
setsebool -P nfs_export_all_rw 1
These booleans are not required when files to be shared are labeled with the public_content_t or public_content_rw_t types. NFS can share
files labeled with the public_content_t or public_content_rw_t types even if the nfs_export_all_ro and nfs_export_all_rw booleans are off.
If you want to use a remote NFS server for the home directories on this machine, you must set the use_nfs_home_dirs boolean:
setsebool -P use_nfs_home_dirs 1
system-config-selinux is a GUI tool available to customize SELinux policy settings.
AUTHOR
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
SEE ALSO selinux(8), chcon(1), setsebool(8)dwalsh@redhat.com 9 Feb 2009 nfs_selinux(8)
Hi
i am using HPUX11.00 and i am facing a starnge problem
after some time when i log on a message is coimng
NFS server not responding still trying....and it keps on coming there is no other way but to log out..form the server and start once again...
there is no file system exported or NFS... (3 Replies)
Hello, I am running a Suse Linux server and I want to set up a NFS Server for a few Unix machines. For the root account at the unix client it works fine but it doesn't work for other users who have no root rights.
I've used the no_root_squash and the rw option in the etc/export file. My folder... (7 Replies)
Hi guys! I have fedora6 on server and i want redhell5 to be on it. The problem is that the server is located from me several hundred kilometers away. So the only access i have is ssh. On my notebook i have iso-image with redhell5.
How can install redhell5 on it and deinstall fedora6? Thanks in... (8 Replies)
I just finished setting up a Kickstart Server for our RHEL 5 installs. It's configured to use the PXE boot and NFS for the installation. Everything works fine when I just build one machine at a time. The installation works from begining to end.
But when I try the install three machines at... (5 Replies)
Hi Everybody,
If there is a general NFS share in the LAN and for example this share has three files - a, b, c is there any way to restrict file access to the root user of one particular host(falcon) in the same LAN environment while the normal users from the same host(falcon) should be able... (4 Replies)
Ok. Here is the situation, I have server A which need to access /tmp folder of server B. Can I mount NFS share (/tmp) from client (serverA)?please let me know (3 Replies)
I have a solaris 10 system that is setup as a NFS server. The NFS clients have DHCP running. How do I setup the server, so that it allows mounts for any machine on the network? (3 Replies)
I have found numerous articles on creating share on HPUX 11.1 (data source prepared for export) but I did not find from client's perspective what to do?
I have a shared dir (all NFS ready full permissions) that I would like to access from a HP server what I need to do on this HPUX to be able to... (5 Replies)
Hello;
I work now with a team which has based her "applications" on the following schema:
1 NFS client C1 (linux redhat 5) writes a file fic.dat on a NFS SERVER S (RH 5)
Another NFS client C2 is waiting for the same file fic.dat (on NFS server S1), and, when "fic.dat" appears, then makes... (8 Replies)
Hello all,
I am having an issue with an NFS share I have created between two Solaris 10 boxes. I want the share to have read/write permissions, but for some reason it is coming up as read-only on the client side mount despite "rw" being specified in the mount options.
Here is what I have... (6 Replies)
Hi,
How can we share a AIX drive on to Windows 2012 server. or vise versa.
Note: Not using NFS/CIFS/samba. (*we are not able to use samba/NFS/CIFS for some reason)
Requirement: How to have real time file sharing over the network between Windows and UNIX
Do you guys have any ... (4 Replies)
I am having an issue with getting the proper group settings on NFS-shared directories.
NFS server, NFServe, nfs-shares hundreds of project directories...running Solaris 10 latest patches/updates.
SAS server, SAServe, statistical analysis server running on RedHat 7 with latest kernel/patches/etc.... (14 Replies)
I suffered a fault on a tape drive and would like to redirect my fbackup from /dev/rmt/0m to a NFS Share. I have mounted a NFS share in /mnt/NFSShare. When I run the following command:
/etc/fbackup -0 -uv -i /backup2/BEM/BEML1 -c /usr/local/scripts/backup/fbackup_config -f... (2 Replies)