Greetings and Felicitations,
Sorry for being so long getting the summary to the list, but I just figured
out what the problem was -- and gave myself a severe headache swacking
myself when the obvious answer came to me.
The original post is at the end of this message, short summary was that
root access to an NFS mounted volume wasn't working.
The host that was having troubles has two network interfaces, so it has two
hostnames, B-1, and B-2, with a cname record in the zone file that points
the name B to both of those.
Adding the real names for each interface to /etc/exports on machine A has
re-enabled root access. I am still not wholly sure why the root access
should succeed on some mounts to that machine and fail on others to the
same machine, though, especially since it was "reliable" in which mounts
failed/succeeded.
Another one of those mysteries that makes Unix the joy of my life.
Thanks to Sean O'Connell <sean_at_stat.Duke.EDU> for sending suggestions.
-- Bennet
>Date: Sun, 06 Feb 2000 16:17:37 -0800
>Subject: NFS root mount not quite right
>
>Hello,
>
>All machines are running DU4.0D, PK5.
>
>I have one NFS mount that doesn't seem to be granting root access to the
>root account of just one other machine, and I'm wondering where to look for
>a solution.
>
>On machine A, I have the following in /etc/exports
>
>/usr/var/spool/mail -access=dom-all,root=B.dom:C.dom
>
>On machines B and C, I have the following in /etc/fstab
>
>A:/usr/var/spool/mail /usr/var/spool/mail nfs rw,bg,intr 0 0
>
>On machine C, after "su -", I can change to the now NFS mounted
>/usr/var/spool/mail, and a "tail -1 user" succeeds.
>
>On machine B, however, after "su -", I change to the now NFS mounted
>/usr/var/spool/mail, and a "tail -l user" fails with a "user: Permission
>denied" message. Further, a "tail -l root" also fails with the same
>message, even though the file named root is listed as being owned by root.
>
>On both machines, an "su user" followed by a "tail -1 user" succeeds (where
>the file user is owned by user).
>
>Machine B, the trouble maker, has root privileges to NFS mounted volumes on
>machine C htat work, and machine A has root privileges to NFS mounted
>volumes on machine B that work.
>
>To test whether this was a problem with machine A in general, I added a
>line to /etc/exports on machine A
>
>/mnt -access=dom-all,root=B.dom
>
>changed the permissions on /mnt to match those on /usr/var/spool/mail,
>created a file with the same permissions as one of the files from
>/usr/var/spool/mail, then mounted this from machine B, and lo, "tail -1
>file" succeeds. So, it appears to be something specific to the
>/usr/var/spool/mail directory or mount not something that is generally
>applicable to machine A.
>
>/usr/var/spool/mail is an advfs filesystem on machine A, with the following
>entry in /etc/fstab
>
>mail_dmn#mail1 /usr/var/spool/mail advfs rw 0 0
>root_domain#root / advfs rw 0 0
<----- oOo ----->
Bennet Fauber
Social Science Data Service
University of California, Davis
Received on Tue Mar 07 2000 - 17:09:00 NZDT