On Sat, May 24, 2014 at 04:20:58PM +0000, Jaap wrote: > Hi folks, > > Not long ago I managed to get NFSv4 to work together with Kerberos (gss/ > krb5i or gss/krb5p), but apparently there's a limitation. It has to do > with exports that include the "no_root_squash" option and then attempting > to allow root on the clients to write to them; this always results in a > "Permission denied" error. > > Is there a solution for this, or a workaround? > > For me this is important, because one of the sites I maintain uses NFS > for home directories and the workstations have an elaborate logout script > in /etc/X11/Xreset.d/ that runs as root (the script contains many sudo > commands to make changes to the user's home directories). Therefore, one > solution would be to avoid running the logout script as root, but AFAIK > that's not possible. You may want to look at "Credentials for UID 0" in the rpc.gssd man page? --b. -- To unsubscribe from this list: send the line "unsubscribe linux-nfs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
