Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to access file path from another server?
Top Forums UNIX for Beginners Questions & Answers How to access file path from another server? Post 302984709 by bdittmar on Sunday 30th of October 2016 09:24:48 AM
Old 10-30-2016
Root squash
Quote:
Originally Posted by alvinoo
Hi Aia,

So that means I just need to call /share from another node within the same subnet and it will work for your nfs sharing mode method?

---------- Post updated at 05:57 AM ---------- Previous update was at 01:54 AM ----------

Hi there,

Is it possible to specific the NFS security restricted to particular host and by UID and GID?

Another thing is what is the difference between root squashing, nosuid, noexec options?

How do I access through UID and GID through manipulation?
Hello,

Root squash

Root squash is a reduction of the access rights for the remote superuser (root) when using identity authentication
(local user is the same as remote user). It is primarily a feature of NFS but may be available on other systems as well.

This problem arises when a remote file system is shared by multiple users. These users belong to one or multiple groups.
In Unix, every file and folder normally has separate permissions (read, write, execute) for the owner
(normally the creator of the file), for the group to which the owner belongs, and for the "world" (all other users).
This allows restriction of read and write access only to the authorized users while in general the NFS server must also be protected by firewall.

A superuser has more rights than an ordinary user, being able to change the file ownership, set arbitrary permissions, and
access all protected content. Even users that do need to have root access to individual workstations may not be authorized
for the similar actions on a shared file system. Root squash reduces rights of the remote root, making one no longer superuser.
On UNIX like systems, root squash option can be turned on and off in /etc/exports file on a server side.

After implementing the root squash, the authorized superuser performs restricted actions after logging into an NFS server directly
and not just by mounting the exported NFS folder.

2nd:
the nosuid, noexec and others are options which you can pass to the mount command (which performs the actual mounting).

Regards
 

9 More Discussions You Might Find Interesting

1. Linux

userid access to a single path

Hi All, Can a user-a on linux be able to access to particular path only? I think is not possible because if the /etc have r on the other then user-a can access it. Right? Thanks for any comment you have will add. (1 Reply)
Discussion started by: itik
1 Replies

2. Shell Programming and Scripting

Can a script runned in local server access remote server?

Hi, Im creating a script that is supposed to run commands on remote server using sftp. My script is as below: #!/bin/ksh sftp remote_server mypassword cd /u08/mydir/allfiles mget * .. But this is what I got when I runned the script: Connecting to remote server...... (3 Replies)
Discussion started by: luna_soleil
3 Replies

3. UNIX for Dummies Questions & Answers

Access of Microsoft Team Foundation Server (TFS) repository from Unix Server

Hello, Some of our application team uses Microsoft Team Foundation server (TFS) reposity tool for their .NET projects , I would like to access it form Unix/Linux machine. Please let me know how can access the TFS from unix. Thanks (0 Replies)
Discussion started by: posix
0 Replies

4. Shell Programming and Scripting

Wait for file to get copied in server path and then proceed

Hi, I have a requirement to create below script: Script must run infinitely in background. It will check a particular type of file to be copied in specific folder of server Script must wait till any file gets fully copied ..(important) and then It will read that file Experts please... (4 Replies)
Discussion started by: Vikash163
4 Replies

5. Shell Programming and Scripting

Multi server access through remote server using ssh

Team, Presently I have 5 ip address kept in ip_abc1 file, for each of the ip address listed, i need to login on each ipaddress one at a time and login as below for that specific ip address ssh -p 8101 karaf@<ip.address_for the specific ip address as logged in> password features:list... (4 Replies)
Discussion started by: whizkidash
4 Replies

6. Proxy Server

How to use Squid on Linux to control certain IP to access Web Server and certain IP cannot access?

Dear all experts here, :) I would like to install a proxy server on Linux server to perform solely to control the access of Web server. In this case, some of my vendor asked me to try Squid and I have installed it onto my Linux server. I would like know how can I set the configuration to... (1 Reply)
Discussion started by: kwliew999
1 Replies

7. Shell Programming and Scripting

Do I require remote login access to a windows server to transfer files from a UNIX server

Hi All I need to transfer a file from a UNIX server to a windows server. I saw that it is possible to do this using scp command by looking at the forum listed below: ... (2 Replies)
Discussion started by: vx04
2 Replies

8. Solaris

Access to one path!

Hi All, I have question and I need someone to help me in this regard:) I have Solaris 11 I have created user called : appuser appuser member to staff group actually I have this system \app\sys\system\bin\logs I want appuser to have access only to this path... (1 Reply)
Discussion started by: nsnaa
1 Replies

9. UNIX for Beginners Questions & Answers

Convert Relative path to Absolute path, without changing directory to the file location.

Hello, I am creating a file with all the source folders included in my git branch, when i grep for the used source, i found source included as relative path instead of absolute path, how can convert relative path to absolute path without changing directory to that folder and using readlink -f ? ... (4 Replies)
Discussion started by: Sekhar419
4 Replies

LEARN ABOUT V7

mount.nfs

MOUNT.NFS(8)						      System Manager's Manual						      MOUNT.NFS(8)

NAME

       mount.nfs, mount.nfs4 - mount a Network File System

SYNOPSIS

       mount.nfs remotetarget dir [-rvVwfnsh ] [-o options]

DESCRIPTION

       mount.nfs is a part of nfs(5) utilities package, which provides NFS client functionality.

       mount.nfs  is  meant to be used by the mount(8) command for mounting NFS shares. This subcommand, however, can also be used as a standalone
       command with limited functionality.

       remotetarget is a server share usually in the form of servername:/path/to/share.  dir is the directory on which the file system	is  to	be
       mounted.

       Under  Linux  2.6.32  and  later  kernel  versions, mount.nfs can mount all NFS file system versions.  Under earlier Linux kernel versions,
       mount.nfs4 must be used for mounting NFSv4 file systems while mount.nfs must be used for NFSv3 and v2.

OPTIONS

       -r     Mount file system readonly.

       -v     Be verbose.

       -V     Print version.

       -w     Mount file system read-write.

       -f     Fake mount. Don't actually call the mount system call.

       -n     Do not update /etc/mtab.	By default, an entry is created in /etc/mtab for every mounted file system. Use this option to skip making
	      an entry.

       -s     Tolerate sloppy mount options rather than fail.

       -h     Print help message.

       nfsoptions
	      Refer to nfs(5) or mount(8) manual pages.

NOTE

       For further information please refer nfs(5) and mount(8) manual pages.

FILES

       /etc/fstab	 file system table

       /etc/mtab	 table of mounted file systems

SEE ALSO

       nfs(5), mount(8),

AUTHOR

       Amit Gud <agud@redhat.com>

								    5 Jun 2006							      MOUNT.NFS(8)
All times are GMT -4. The time now is 09:38 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy