I am using a HP-UX 11.31 Server that I have exported a file system through share cmd.
svr01 # share -F nfs -o rw=ws01 /data
There is a 777 directory "test" in /data.
in client host ws01, user root cannot write to /data/test, but other user can.
ws01 # id
uid=0(root) gid=3(sys) groups=0(root),1(other),2(bin),4(adm),5(daemon),6(mail),7(lp),20(users)
ws01 # touch a
touch: a cannot create
ws01 # su ata
$ touch a
$ ll a
-rw-r--r-- 1 ata ata 0 Dec 15 09:46 a
if I add 'anon' option in share cmd, user root can write to /data/test
svr01 # share -F nfs -o rw=ws01,anon=2 /data
ws01 # touch b
ws01 # ll b
-rw-r--r-- 1 bin sys 0 Dec 15 09:48 b
but if I want to use UID_NOBODY in anon, it failed.
1. use -2 as UID_NOBODY caused it failed in server.
svr01 # cat /etc/passwd | grep nobody
nobody:*:-2:-2::/:
svr01 # share -F nfs -o rw=ws01,anon=-2 /home
share_nfs: invalid anon value
2. use 4294967294 as UID_NOBODY caused it failed in client
svr01 # id nobody
uid=4294967294(nobody) gid=4294967294(nogroup)
svr01 # share -F nfs -o rw=ws01,anon=4294967294 /home
ws01 # touch b
touch: b cannot create
I noticed that there was a bug fixed in ONCplus B.11.31.08:
QXCR1000916642 Requests with UID and GID set to тАУ2, does not map to anon value
I checked my ONCplus version, it is B.11.31.08 already.
svr01 # swlist -l bundle | grep ONCplus
ONCplus B.11.31.08 ONC+ 2.3
So, How can I set UID_NOBODY to be the effective user ID of root user?
Thanks for the responses.
