Amanda-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Permission denied errors

2002-09-27 11:27:44
Subject: Re: Permission denied errors
From: Frank Smith <fsmith AT hoovers DOT com>
To: Ashwin Bijur <abijur AT craft-tech DOT com>
Date: Fri, 27 Sep 2002 09:59:55 -0500 
To change NFS export options, you generally need to unmount the
filesystem on the client, change the export options on the NFS
server, re-export the filesystem on the server, and mount it
back on the client.
 If you change mount options on the NFS client, you just need
to remount the filesystem on the client.
 On the client side there may also be an option on whether
to honor SUID bits (Solaris, for example).
 Before you spend too much time with NFS options, verify that
is really the problem.  If you are root on the Amanda server
can you look at the files that Amanda gives errors on?  If not,
then you need to see why root on the Amanda host is being mapped
to a different user on your NFS server. If you can read the files
as root, then verify that a SUID-root executable on the NFS
server really runs as root on the client.

Frank

--On Friday, September 27, 2002 09:56:06 -0400 Ashwin Bijur <abijur AT craft-tech 
DOT com> wrote:


no_root_squash doesn't seem to work.  Should the machine be re-booted for the 
change to take effect?  Your help is appreciated.

Thanks,
Ashwin.

Frank Smith wrote:


--On Friday, September 20, 2002 11:43:51 -0400 Ashwin Bijur
<abijur AT craft-tech DOT com> wrote:


We use amanda 2.4.2p2 on Red Hat Linux 7.3.  We have nfs mounted a
directory on the amanda server called /xtreme23/scratch.  Some of the
subdirectories and files under the scratch directory have permission
600.  The /etc/exports file on the xtreme23
machine has the scratch directory exported with read and write
permissions (/scratch *(rw)).  When we run amanda, we get an error
message saying "Permission Denied" for these files.  Now as
user=amanda and group=disk, we should be able to backup these
files.  What are we doing wrong?



I'm assuming you are using tar (since I don't think you can use dump
on an NFS mount).  Amanda uses the runtar wrapper script, which is
suid root so that tar can run as root (since tar accesses via the
filesystem it has to run as root to access all the files).
 Most OS's map NFS access requests from UID 0 (root) to nobody
or some other non-root user for security reasons.  You probably
need to change your export options on xtreme23 to include the
no_root_squash option (or whatever its called on the NFS server's
OS) for the export to the Amanda server so that root on the Amanda
server has root access to /xtreme23/scratch, so tar can see all of
the files.

Frank



Thanks in advance,
Ashwin Bijur
Assistant Systems Administrator.




--
Frank Smith
fsmith AT hoovers DOT com
Systems Administrator                                     Voice:
512-374-4673
Hoover's Online                                             Fax:
512-374-4501







--
Frank Smith                                                fsmith AT hoovers 
DOT com
Systems Administrator                                     Voice: 512-374-4673
Hoover's Online                                             Fax: 512-374-4501
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: comments about amanda packages requested, MOHD FIROJ MITHANI
Next by Date:  Re: tar (GNU tar) 1.13.25 missing files in index, Gene Heskett
Previous by Thread:  Re: Permission denied errors, Ashwin Bijur
Next by Thread:  Re: Permission denied errors, Vijay
Indexes:  [Date] [Thread] [Top] [All Lists]