Simpler Navigation for Servers and Operating Systems - Please Update Your Bookmarks
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
If you have bookmarked forums or discussion boards in Servers and Operating Systems, we suggest you check and update them as needed.
cancel
Showing results for 
Search instead for 
Did you mean: 

NFS GID limit

NFS GID limit

Hi all,
I have a problem with GID and NFS
On RHEL5 server (servA) i export a file system where a directory is root.group owned and perm 2770.

/etc/export
/dirroot/fs xxx.xxx.0.0/16(rw)

ls -l /dirroot
drwxrwxrwx 4 root root 4096 Nov 24 14:06 fs

ls -ln /dirroot/fs
drwxrws--- 2 0 10021 4096 Nov 24 14:08 prv1
drwxrws--- 2 0 10022 4096 Nov 24 14:06 prv2

On an RHEL5 client (servB) i mount the fs.

Now on servB i can read and write into prv1 (gid=10021), but i have a 'permission denied' when i read prv2.

Naturally mi user (user1) exist via LDAP on every server, groups '10021' and '10022' are defined on every node (via LDAP), and the user is member of both groups

Can anyone help me?

Thanks,
Daniele
2 REPLIES
Ivan Ferreira
Honored Contributor

Re: NFS GID limit

NFS has a limitation on the numbers of groups that a user belongs, I thinks is 16. How many groups your users belongs to?

See:

http://nfsworld.blogspot.com/2005/03/whats-deal-on-16-group-id-limitation.html

Also, the permissions for the fs directory allows write to others, your security is in risk with this setting.
Por que hacerlo dificil si es posible hacerlo facil? - Why do it the hard way, when you can do it the easy way?

Re: NFS GID limit

Hi Ivan,
in effect the 10021 and 10022 gid are on the limit of the 16th and 17th element in the list of groups for mi user (id userid).

Thanks,Daniele