*BSD News Article 7534

Return to BSD News archive 

Newsgroups: comp.unix.bsd
Path: sserve!manuel.anu.edu.au!munnari.oz.au!sgiblab!zaphod.mps.ohio-state.edu!sol.ctr.columbia.edu!eff!news.byu.edu!ux1!fcom.cc.utah.edu!cs.weber.edu!terry
From: terry@cs.weber.edu (A Wizard of Earth C)
Subject: Re: mountd/portmap/NFS problem
Message-ID: <1992Nov6.205630.21589@fcom.cc.utah.edu>
Sender: news@fcom.cc.utah.edu
Organization: Weber State University  (Ogden, UT)
References: <1992Nov5.175351.26079@cs.brown.edu> <1992Nov6.050651.8709@fcom.cc.utah.edu> <1992Nov6.181052.10725@u.washington.edu>
Date: Fri, 6 Nov 92 20:56:30 GMT
Lines: 43

In article <1992Nov6.181052.10725@u.washington.edu> ganter@carson.u.washington.edu (Mark Ganter) writes:
>terry@cs.weber.edu (A Wizard of Earth C) writes:
>
>>Install the NFS and mount patches at the very least.  You seem to be running
>>into the overlap and reserved port problems.
>
>Terry & Luigi, I had the same problem recently.  I chased it down to an
>export problem on the file system thatbsd was trying to mount.  My memory
>on the net says "386bsd doesn't do secure NFS mount".  Is that true?  I
>changed my /etc/exports file of the "host system" from:
>
>/users    dragon
>to:
>/users
>
>and everything now works fine!  Just my $0.02 worth ...Mark

Right.  This is because the NFS when running "secure" expects "vouchsafe"
identification (ie: a connection from a reserved port to indicate the NFS
client is being run by root instead of being a user process that pretends
to be an NFS client).  The "vouchsafe" is done by ensuring the remote client
is run as root by requiring a reserved port (which only root can allocate).

There is also an "overlap" problem where you can't export both "/" and
"/usr" if they aren't seperate file systems.

In theory, these are both fixed with the patchkit (works for me, anyway).
There's also some AIX 3.2 client stuff that's a pretty bizarre
interpretation of the RFC's, but this only applies to allowing remote
mounts by AIX 3.2 boxes  of partitions exported from 386BSD.


					Terry Lambert
					terry@icarus.weber.edu
					terry_lambert@novell.com
---
Any opinions in this posting are my own and not those of my present
or previous employers.
-- 
-------------------------------------------------------------------------------
                                        "I have an 8 user poetic license" - me
 Get the 386bsd FAQ from agate.berkeley.edu:/pub/386BSD/386bsd-0.1/unofficial
-------------------------------------------------------------------------------