This isn't an EPICS question. Still, I think this is the sort
of problem which others on this list have had to confront.
Has anyone found a recipe for managing a shared data directory
over NFSv4? Where multiple users within a group can create files
which can then be modified by other members of that group?
I think there will be two parts to this answer. How to express
this as a NFSv4 ACL. And which NFSv4 clients/servers can correctly
translate such an ACL to/from their native permissions model.
eg. Linux circa Debian 6 would only check NFSv4 ACLs against a
user's primary group.
The recipe I've used on NFSv3 with the posix ACL extension is:
> chgrp -R people /data
> chmod -R g+ws /data
> setfacl -d -m group::rwx /data
Which is:
1. Set group directory ownership to 'people'
2. Set the group set-id bit
So files and directories created will be owned by the 'people'
group instead of the user's primary group.
3. Add an ACL rule to override the UMASK
So files and directories created will be writable by other
members of the 'people' group.
This recipe can't be directly translated to the NFSv4 ACL model
which does not have the concept of set-id bits nor of umask.
https://man7.org/linux/man-pages/man1/nfs4_setfacl.1.html
- Navigate by Date:
- Prev:
either_ip related issue Smith, Martin via Tech-talk
- Next:
DETRIS Eiger triggering John Dobbins via Tech-talk
- Index:
1994
1995
1996
1997
1998
1999
2000
2001
2002
2003
2004
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
<2020>
2021
2022
2023
2024
- Navigate by Thread:
- Prev:
either_ip related issue Smith, Martin via Tech-talk
- Next:
DETRIS Eiger triggering John Dobbins via Tech-talk
- Index:
1994
1995
1996
1997
1998
1999
2000
2001
2002
2003
2004
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
<2020>
2021
2022
2023
2024
|