Re: Binding ports for NFS

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi, it sort of worked. When I try to mount the nfs share from the mac I finally reach the daemons on the linux box.
My next problem is apparently with SELINUX.

This is the error I get in /var/log/messages:
rpc.mountd: can't stat exported dir /home/theuser/Desktop/SHARED/: Permission denied

These are the errors in /var/log/audit/audit.log:

type=AVC msg=audit(1134798282.051:85): avc: denied { dac_override } for pid=3032 comm="rpc.mountd" capability=1 scontext=root:system_r:nfsd_t tcontext=root:system_r:nfsd_t tclass=capability type=AVC msg=audit(1134798282.051:85): avc: denied { dac_read_search } for pid=3032 comm="rpc.mountd" capability=2 scontext=root:system_r:nfsd_t tcontext=root:system_r:nfsd_t tclass=capability type=SYSCALL msg=audit(1134798282.051:85): arch=40000003 syscall=196 success=no exit=-13 a0=bf8933d7 a1=bf893328 a2=235ff4 a3=876e0f8 items=1 pid=3032 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="rpc.mountd" exe="/usr/sbin/rpc.mountd"
type=CWD msg=audit(1134798282.051:85):  cwd="/var/lib/nfs"
type=PATH msg=audit(1134798282.051:85): item=0 name="/home/theuser/ Desktop/SHARED" flags=0 inode=7274600 dev=fd:00 mode=040700 ouid=500 ogid=500 rdev=00:00 type=AVC msg=audit(1134798282.199:86): avc: denied { dac_override } for pid=3032 comm="rpc.mountd" capability=1 scontext=root:system_r:nfsd_t tcontext=root:system_r:nfsd_t tclass=capability type=AVC msg=audit(1134798282.199:86): avc: denied { dac_read_search } for pid=3032 comm="rpc.mountd" capability=2 scontext=root:system_r:nfsd_t tcontext=root:system_r:nfsd_t tclass=capability type=SYSCALL msg=audit(1134798282.199:86): arch=40000003 syscall=195 success=no exit=-13 a0=876e0e0 a1=bf893328 a2=235ff4 a3=bf893328 items=1 pid=3032 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="rpc.mountd" exe="/usr/sbin/rpc.mountd"
type=CWD msg=audit(1134798282.199:86):  cwd="/var/lib/nfs"
type=PATH msg=audit(1134798282.199:86): item=0 name="/home/theuser/ Desktop/SHARED/" flags=1 inode=7274600 dev=fd:00 mode=040700 ouid=500 ogid=500 rdev=00:00

These are the permissions for the folder:
drwxrwxrwx theuser theuser user_u:object_r:user_home_t SHARED

So now that I finally make it through the firewall, how can I get permission to mount the nfs share?

Thanks
EJ

On Dec 16, 2005, at 3:17 PM, Christopher K. Johnson wrote:

redhatdude@xxxxxxxxxxxxx wrote:

Thanks to all of you who've taken the time to reply.
Unfortunately, I don't have an nfs configuration file inside /etc/ sysconfig/ Should I create it? What should I put in it? Just what I'm being told about the ports or something else besides that?
Thanks again,
EJ


# Created 05.07.05 by Tony Molloy
# based on work by Christopher K. Johnson ( dirigo.net )

RPCNFSDCOUNT=32

# ports for statd daemon
STATD_PORT=4000
STATD_OUTGOING_PORT=4004

# ports for lockd daemon
LOCKD_TCPPORT=4001
LOCKD_UDPPORT=4001

# ports for mountd daemon
#MOUNTD_NFS_V2=no
#MOUNTD_NFS_V3=no
MOUNTD_PORT=4002

# ports for rquota daemon
#RQUOTAD=no
RQUOTAD_PORT=4003



You do need to create /etc/sysconfig/nfs since there is not one provided by default. However the Fedora Core init scripts will look for it and use it if provided. The contents should be the comments as you wish, and the variable assignments for fixing ports as was emailed by someone earlier. The init scripts source this file and then use the environment variables set by it.

--
  "Spend less!  Do more!  Go Open Source..." -- Dirigo.net
  Chris Johnson, RHCE #807000448202021

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list


[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux