[plug] NFS problem
John Summerfield
summer at os2.ami.com.au
Tue Dec 1 11:52:32 WST 1998
On Tue, 1 Dec 1998, Greg Mildenhall wrote:
> On Tue, 1 Dec 1998, John Summerfield wrote:
> > On Mon, 30 Nov 1998, Greg Mildenhall wrote:
> > > On Sun, 29 Nov 1998, John Summerfield wrote:
> > > > On Sun, 29 Nov 1998, Greg Mildenhall wrote:
> > > > > Or perhaps you upgraded something that was required by the new kernel?
> > > > > (i.e. in /usr/src/linux/Documentation/Changes)
> > > > I'm at the level of everything required by kernel '126.
> > > OK, so the answer almost certainly lies in one of those things you
> > > upgraded.
> > I agree with that, and I expect it will be fixed if I revert to earlier
> > software. That won't help my kernel plans.
> > > Do you recall whether NFS worked while you were running 2.1.126?
> > Didn't work with 2.1.126 either.
> OK, so it's almost certainly got nothing whatsoever to do with the kernel.
> Seems like the new version of mountd wants slightly different
> configuration files, and Redhat stuffed up the transition.
> Better go and add those two explicit lines that Matt mentioned, they are
> repeated about 3 times in the doco I have here. I don't think mountd is
> globbing properly, for reasons unknown. Maybe it's not meant to. Either
> way it appears that you'll need those mountd specific lines in your
> hosts.allow.
[root at possum summer]# rpm --upgrade /redhat/incoming/nfs-server-*
[root at possum summer]# /etc/rc.d/init.d/nfs stop
Shutting down NFS services: rpc.mountd rpc.nfsd
[root at possum summer]# /etc/rc.d/init.d/nfs start
Starting NFS services: rpc.mountd rpc.nfsd
[root at possum summer]# cat /etc/hosts.allow
#
# hosts.allow This file describes the names of the hosts which are
# allowed to use the local INET services, as decided
# by the '/usr/sbin/tcpd' server.
#
ALL:.os2.ami.com.au
rpc.mountd: 192.168.1.2: ALLOW
rpc.mountd: emu.os2.ami.com.au: ALLOW
[root at possum summer]# tail /var/log/daemon
Dec 1 11:17:20 possum automount[2711]: mount(generic): calling mkdir /misc/cd
Dec 1 11:17:20 possum automount[2711]: mount(generic): calling mount -t iso9660 -s -o ro /dev/cdrom /misc/cd
Dec 1 11:17:23 possum automount[2711]: mount(generic): mounted /dev/cdrom type iso9660 on /misc/cd
Dec 1 11:17:56 possum automount[2715]: running expiration on path /misc
Dec 1 11:17:58 possum automount[2715]: expired /misc/cd
Dec 1 11:19:39 possum nfsd[2755]: Unauthorized access by NFS client 192.168.1.2.
Dec 1 11:19:41 possum last message repeated 3 times
Dec 1 11:20:21 possum mountd[2748]: NFS mount of /redhat attempted from 192.168.1.2
Dec 1 11:20:21 possum mountd[2748]: Unauthorized access by NFS client 192.168.1.2.
Dec 1 11:20:21 possum mountd[2748]: Blocked attempt of 192.168.1.2 to mount /redhat
[root at possum summer]#
and on emu where /redhat was mounted at the start of this.
[root at emu /root]# ls /redhat/*
ls: /redhat/*: Permission denied
[root at emu /root]# mount
/dev/hda6 on / type ext2 (rw)
/dev/hdb5 on /u type ext2 (rw)
/dev/hda9 on /work type ext2 (rw)
/dev/hda1 on /usr type ext2 (rw)
automount(pid29094) on /misc type autofs (rw,fd=5,pgrp=29094,minproto=2,maxproto=3)
automount(pid29104) on /os2 type autofs (rw,fd=5,pgrp=29104,minproto=2,maxproto=3)
possum:/redhat on /redhat type nfs (rw,soft,intr,addr=192.168.1.6)
[root at emu /root]# mount -a
mount: proc already mounted or /proc busy
[root at emu /root]# mount
/dev/hda6 on / type ext2 (rw)
/dev/hdb5 on /u type ext2 (rw)
/dev/hda9 on /work type ext2 (rw)
/dev/hda1 on /usr type ext2 (rw)
automount(pid29094) on /misc type autofs (rw,fd=5,pgrp=29094,minproto=2,maxproto=3)
automount(pid29104) on /os2 type autofs (rw,fd=5,pgrp=29104,minproto=2,maxproto=3)
possum:/redhat on /redhat type nfs (rw,soft,intr,addr=192.168.1.6)
[root at emu /root]# umount /redhat/
[root at emu /root]# mount /redhat/
mount: possum:/redhat failed, reason given by server: Permission denied
[root at emu /root]#
adding these doesn't help either:
mountd: 192.168.1.2: ALLOW
mountd: emu.os2.ami.com.au: ALLOW
In desperation, I looked into /usr/doc/nfs-server-2.2beta37 and found a
couple of files.
In the README, there's this advice:
daemon access control: Both rpc.mountd and rpc.ugidd can be
configured to use the access control features of the
TCP wrappers package. This will let you specify in the
/etc/hosts.allow and hosts.deny files which hosts are
and further down:
To protect rpc.ugidd or rpc.mountd from unauthorized access,
you just have to add lines to /etc/hosts.allow and/or
/etc/hosts.deny detailing which hosts are allowed to talk to
it. If your NFS server has the IP address 193.175.30.33, you
would add the following to hosts.allow and hosts.deny,
respectively:
# hosts.allow:
rpc.ugidd: 193.175.30.33
# hosts.deny:
rpc.ugidd: ALL
so now I have
[root at possum data]# cat /etc/hosts.allow
#
# hosts.allow This file describes the names of the hosts which are
# allowed to use the local INET services, as decided
# by the '/usr/sbin/tcpd' server.
#
ALL:.os2.ami.com.au
rpc.mountd: 192.168.1.2: ALLOW
rpc.mountd: emu.os2.ami.com.au: ALLOW
mountd: 192.168.1.2: ALLOW
mountd: emu.os2.ami.com.au: ALLOW
rpc.ugidd: 192.168.1.2: ALLOW
rpc.ugidd: emu.os2.ami.com.au: ALLOW
[root at possum data]#
and still it does not work.
The procedure for reporting bugs is outlined in a file called BUGS. Of
course, since RedHat only ships perfect software, this isn't included.
nor is the info in the man page.
--
Cheers
John Summerfield
http://os2.ami.com.au/os2/ for OS/2 support.
Configuration, networking, combined IBM ftpsites index.
More information about the plug
mailing list