LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 04-12-2017, 03:07 AM   #1
MasterPit
LQ Newbie
 
Registered: Apr 2017
Posts: 9

Rep: Reputation: Disabled
Disk/Folder sharing over network


Hi,

I am sure my problem is quite easy to solve, but i have a blackout, and can't find right answer. I have Linux machine with big/secure storage, lets call it server, and other machine, lets call it client.

I need some kind of configuration in which i mount this disk persistent(via fstab) and let users use it as regular mounted partition. I tried with samba and nfs, but problem is users permissions. I am not able to set actual user as owner (it sets as uid who mounted share). Lets say on client mashine i am logged as user Bob, but when i use
Code:
touch /mnt/share
the owner is not being set as Bob.
Is it possible to make such configuration it via samba? If no, how can i achive this(mount network share like regular disk partition)
 
Old 04-12-2017, 08:20 AM   #2
MensaWater
LQ Guru
 
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, CoreOS, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 7,831
Blog Entries: 15

Rep: Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669
If you create an SMB/CIFS share you can mount it on Linux via fstab by specifying the UID and GID of the user on the client:

//<server>/directory /<client path directory> cifs username=<user>,password=password,uid=<UID>,gid=<GID> 1 4
 
Old 04-12-2017, 01:28 PM   #3
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,872
Blog Entries: 12

Rep: Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053
personally, i use sshfs.
if you have a little experience with ssh, sshfs should come quite naturally.
just my 2ct.
 
Old 04-12-2017, 08:59 PM   #4
frankbell
LQ Guru
 
Registered: Jan 2006
Location: Virginia, USA
Distribution: Slackware, Ubuntu MATE, Mageia, and whatever VMs I happen to be playing with
Posts: 19,272
Blog Entries: 28

Rep: Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123Reputation: 6123
If you use Samba (advisable if you have Windows machines in your network), Samba is the way to go.

Please provide some more information: Do you want the share to accessible to all users, or only to one ("Bob"?)? What distro/version are you using?

The overview is this:

1. Include the partition in /etc/fstab, ideally by label or UUID, so it always mounts to the same location location in /media or /mnt.

2. Share the partition via /etc/samba/smb.conf file.

3. Create a password for the user(s) in /etc/samba/smbpasswd file.

4. In the directory configuration, mark the partition as shared. (This step is separate from the Samba configuration), as well as configure whether it's read only, read/write, etc.

Some distros include an item in their control centers that provides GUI tools for sharing a partition, so I'm holding off on going into a lot of command line details.

A search for "configure Samba [distroname]" should lead you to to some tutorials for your distro.

Also, sshfs does work very nicely to do what it does. I use Samba in my home network, because we have Linux, Windows, and the occasional Mac access various shares.
 
Old 04-13-2017, 12:22 AM   #5
MasterPit
LQ Newbie
 
Registered: Apr 2017
Posts: 9

Original Poster
Rep: Reputation: Disabled
Hi,

I will take a look on sshfs, but its additional software to install, and would like to find other solution first for security reasons.

I would prefer samba, as already used and implemented solution. Answers to questions:

1)Do you want the share to accessible to all users?
Yes, each user logged on client should be able to access such "device", but mounting should be password protected in samba(each client linux should have own samba account for mounting such a device)

I have disk array mounted on server and shared via samba, here conf

Code:
[testshare]
        comment = Test share
        path = /path/to/my/share
        valid users = share_test
        writeable = Yes
        create mask = 0666
        directory mask = 0555
And now the problem is, when i mount this disk on client machine, the owner of each created file is: share_test. I would like to use real uid and gid. Lets say if file was created by user Bob(if Bob is already logged user on client), lets the owner of the file be Bob, not share_test.

Quote:
4. In the directory configuration, mark the partition as shared. (This step is separate from the Samba configuration)
Sorry, i don`t know what do you mean by mark partition as shared
 
Old 04-13-2017, 02:34 AM   #6
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,872
Blog Entries: 12

Rep: Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053
Quote:
Originally Posted by MasterPit View Post
I will take a look on sshfs, but its additional software to install, and would like to find other solution first for security reasons.
i think it's just a wrapper around ssh, and should be just as secure.

i'm using sshfs after login, because ssh key initialization also happens then and without that i cannot use it.
 
Old 04-14-2017, 05:00 AM   #7
MasterPit
LQ Newbie
 
Registered: Apr 2017
Posts: 9

Original Poster
Rep: Reputation: Disabled
Well, i made some research. Sshfs uses fuse library, which makes it quite vunerable to attacks, so it's hard to say if it is just wrapper around ssh. It is production enviroment, and i can't install any untested kernel modules due to security and stability reasons.
 
Old 04-14-2017, 08:53 AM   #8
MensaWater
LQ Guru
 
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, CoreOS, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 7,831
Blog Entries: 15

Rep: Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669Reputation: 1669
Did you see my post early in the thread? As I noted you can mount the SMB (Samba) share as a cifs mount on each client specifying the UID of the user on that client as owner for that client.
 
Old 04-14-2017, 11:40 AM   #9
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,872
Blog Entries: 12

Rep: Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053
Quote:
Originally Posted by MasterPit View Post
Sshfs uses fuse library, which makes it quite vunerable to attacks, so it's hard to say if it is just wrapper around ssh.
that's a strong statement; can you back it up?
anyhow, the sshfs man page clearly states:
Quote:
SSHFS (Secure SHell FileSystem) is a file system capable of operating on files on a
remote computer using just a secure shell login on the remote computer. On the local com‐
puter where the SSHFS is mounted, the implementation makes use of the FUSE (Filesystem in
Userspace) kernel module. The practical effect of this is that the end user can seamlessly
interact with remote files being securely served over SSH just as if they were local files
on his/her computer. On the remote computer the SFTP subsystem of SSH is used
so the remote connection is done with sftp, and fuse is used only locally.
i don't see any problem there.
 
Old 04-18-2017, 03:37 AM   #10
MasterPit
LQ Newbie
 
Registered: Apr 2017
Posts: 9

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by ondoho View Post
that's a strong statement; can you back it up?
Well, FUSE library lets the regular user to mount filesystem, what in standard linux is allowed only for root. Furthermore it is additional kernel module which allows to mount filesystem, in fact ommiting the implemented security policies.

Quote:
Did you see my post early in the thread? As I noted you can mount the SMB (Samba) share as a cifs mount on each client specifying the UID of the user on that client as owner for that client.
Well, thats not exactly what i am looking for(in this idea i have fixed username as owner of directory). Lets say i have two client Linux. We have users Alice and Bob, both authenticating via LDAP, and apache user serving www. I would like to mount shared /var/www directory from remote site(server). Then when Alice create file let the owner of file be Alice, and when Bob creates file let Bob be owner(Both uses same mountpoint defined in fstab). Furthermore, as Alice and Bob are members of group apache, let the webserver be able to read/modify this files. I would also like to know if file was created by Bob or Alice, due to security reasons.
 
Old 04-18-2017, 03:46 AM   #11
pan64
LQ Addict
 
Registered: Mar 2012
Location: Hungary
Distribution: debian/ubuntu/suse ...
Posts: 21,686

Rep: Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274
is this remote server running windows or linux/unix? Is this filesystem ntfs or ???
You do not need to specify valid users if any user allowed to use its own user id.
 
Old 04-18-2017, 03:55 AM   #12
MasterPit
LQ Newbie
 
Registered: Apr 2017
Posts: 9

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by pan64 View Post
is this remote server running windows or linux/unix? Is this filesystem ntfs or ???
You do not need to specify valid users if any user allowed to use its own user id.
Hi, server is Linux, connected to disk array, it is xfs partition. I would like to share this partition to remote clients(also linux), but it has to be mounted once on system startup (lets say its /var/www directory, so i cant mount it independently for each user). Each user can use it(like regular filesystem). But when i mount filesystem viasamba as let say smb_user, then each file is owned by smb_user, not as Bob, who actualy created this file.
 
Old 04-18-2017, 04:06 AM   #13
pan64
LQ Addict
 
Registered: Mar 2012
Location: Hungary
Distribution: debian/ubuntu/suse ...
Posts: 21,686

Rep: Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274
samba should only be used in case of ntfs/windows, otherwise it is not the right tool. I would recommend you yo use nfs instead.
From the other hand you need to configure samba to allow users to use their own ids, you need to remove forcing that smb_user.
 
Old 04-18-2017, 04:14 AM   #14
MasterPit
LQ Newbie
 
Registered: Apr 2017
Posts: 9

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by pan64 View Post
From the other hand you need to configure samba to allow users to use their own ids, you need to remove forcing that smb_user.
Thats exactly what i am looking for! But i am not able to force samba to use actual users id, i can't find this option in samba configuration(i have already read samba man page many times), can you give me a clue. In fact it is mixed linux/windows enviroment, but to make it clear i haven't mentioned about windows clients.
 
Old 04-18-2017, 04:47 AM   #15
pan64
LQ Addict
 
Registered: Mar 2012
Location: Hungary
Distribution: debian/ubuntu/suse ...
Posts: 21,686

Rep: Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274Reputation: 7274
Quote:
Originally Posted by MasterPit View Post
Thats exactly what i am looking for! But i am not able to force samba to use actual users id
There is no such option. You forced to change the user id, that is the problem.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Sharing a folder on the network philvd Linux - Newbie 3 06-03-2011 05:54 PM
Sharing folder with Windows network 512upload Ubuntu 32 02-06-2011 03:59 PM
Network sharing folder cheesewizz Linux - Networking 4 05-27-2009 12:08 PM
Sharing a folder between two network computers reverse Debian 2 08-14-2007 11:05 AM
window xp sharing folder on a network blackzone General 1 09-10-2006 06:34 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 06:23 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration