Dear Steinar, > ... I think I might have an idea :-)
Good. > Note that nfs-utils _has_ code in place for parsing gid lists and the like; > you can even specify squash_gids=. However, it is not documented for a simple > reason: it _does not work_, since the kernel exports no such interface. Are you saying that mountd might be happy to squash gid=staff, but the kernel would not understand such a request? > Then I'm afraid you have different "wants" than me. I definitely do not want > /home nosuid, and I can't really imagine too many other sane administrators > wanting to. My users demand it. A few create suid-to-themselves applications to let people submit data to them. > Anyhow, you'll have to decide: Either close, reassign to the kernel, or > retitle to something like "please document that root_squash doesn't squash > gid staff" and set to wishlist -- even leaving aside the other issues, that's > really all nfs-utils can do here. OK, how about: make a wishlist for NFS to squash gid=staff as default with root_squash, and reassign to the kernel to support that? Please do any of the above as you see fit. I was actually hoping that the NFS community would be able to convince the policymakers to fix the policy. They tricked you already: you were mistaken about root's PATH. With the wrong policy, bugs such as this will keep popping up; they will be reassigned, retitled, or otherwise shifted without actually solving anything; and the holes will remain. Cheers, Paul Szabo [EMAIL PROTECTED] http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of Sydney Australia -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
