permission problems on nfs volumes

Hello.

I've a fileserver (suse linux kernel 2.4.20) and a terminal server (gentoo
kernel 2.6.7-gentoo). I've tried to export the homes and some data from the
file- to the terminalserver, mounted via autofs. This works but there are some
ugly things.

There are (on the nfs client) directories with files in it which have the same
owner and group and proper permissions like the directories. Users can change
into these directories but they can't see the files. ls tells the user that
he has no permissions to see the files. Root can see them.
I've logged in the same user (same uid,gid) on the nfs server (fileserver) and
he can change into these directories and he has permissions to read and write
the files. So i can be shure that the problem is not a unix permission
problem on nfs server site.

See the configuration description at the end of my mail.

Lets have a look at the terminalserver
henry@terminalserver # ls -l /home/henry
lrwxrwxrwx root root Myshare -> .autofs/EVS/
[...]
henry@terminalserver # ls -l /home/henry/Myshare/
drwxrws--- henry evsarch archives
drwxrws--- henry evswork work
[...]
henry@terminalserver # cd /home/henry/Myshare/archives/
henry@terminalserver archives # ls
blueberry.sxc

Well, that's fine, but now comes the final problem:

henry@terminalserver # cd /home/henry/Myshare/work/
henry@terminalserver work # ls
ls: reading directory .: Permission denied

What's going on? Permission denied? He is the owner. Groupmembers have also no
permissions. Only root has permissions.
Note: Doing the same on the fileserver -- we have all permissions we need, and
doing the same for different directories in the users home on the
terminalserver or in different homes we have permissions for some directories
and for someone not.
One good thing: Directories with "bad permissions" aren't changing, they are
always the same.

Testing:
- booted the terminalserver with kernel 2.4.26 -- the same behavior
- used a gentoo box with kernel 2.6.7 as fileserver - the same behavior
- tested in all combinations - always the same behavior
- removing a "bad directory" and creating a new one - the same behavior

I've no nis domain. But the gids and uids and the group membership is/ are the
same on all boxes. Can you give me hints what's going on?

Hope to hear from you
Christian

configuration files and directory structure:

fileservers /etc/exports :
/data/exports/home terminalserver (rw,no_root_squash)
/data/exports/nfsroot terminalserver (rw,no_root_squash)

terminalservers autofs files :
#auto.master
/home /etc/autofs/auto.home
/home/user1/.autofs /etc/autofs/auto.home.user1.autofs

# auto.home
* -fstype=nfs,soft,intr,rsize=8192,wsize=8192,nosuid \
fileserver:/data/exports/home/&

# auto.home.user1.autofs
* -fstype=nfs,soft,intr,rsize=8192,wsize=8192,suid \
fileserver:/data/exports/nfsroot/&

fileservers directorystructure :

# ls -al /data/exports
drwxr-xr-x root root .
drwxr-xr-x root root ..
drwxr-xr-x root root home
drwxr-xr-x root root nfsroot

# ls -al /data/exports/home/
drwxr-xr-x root root .
drwxr-xr-x root root ..
drwx------ user1 users user1
drwx------ user2 users user2
[...]

# ls -al /data/exports/nfsroot/
drwxr-xr-x root root .
drwxr-xr-x root root ..
drwxr-xr-x root evs EVS
drwxr-xr-x root mis MIS
[...]

# ls -al /data/exports/nfsroot/EVS/
drwxr-xr-x root evs .
drwxr-xr-x root root ..
drwxrws--- henry evsarch archives
drwxrws--- henry evstmp tmp
drwxrws--- henry evswork work
drwxrws--- henry evsfees fees
[...]

# ls -al /data/exports/nfsroot/MIS/
drwxr-xr-x root mis .
drwxr-xr-x root root ..
drwxrws--- spaetzle misarch archives
drwxrws--- spaetzle mistmp tmp
drwxrws--- spaetzle miswork work
drwxrws--- spaetzle misfees fees
[...]

# ls -al /data/exports/nfsroot/EVS/work/
drwxrws--- henry evswork .
drwxr-xr-x root evs ..
-rw-rw---- henry evswork bulgin.jpg
[...]

# ls -al /data/exports/nfsroot/EVS/archives/
drwxrws--- henry evsarch .
drwxr-xr-x root evs ..
-rw-rw---- henry evsarch blueberry.sxc
[...]

And so on. All is the same structure, i can see no differences in permissions.
At least we have symlinks (done by root) in users homes pointing to an
existing directory in the autofs generated mountpoint ~/.autofs/ like
# ln -s .autofs/EVS/ Myshare

--

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.9.10 (GNU/Linux)

iD8DBQBBVY6xszmQKstIgt4RAk4iAJ90bcknoSF5IQlCctjhXN Vfpc+iSQCeJ24Z
vW6Bb/JzmzyQTgkJkGa9Yjk=
=qZe1
-----END PGP SIGNATURE-----

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode test 33Switch to Hybrid Mode Switch to Threaded Mode