While playing around with the issue of the remote execution of a suid file, it turned out that the set permissions:
Code:
-r-s--x--x 1 root root 51K Jan 13 2010 rsh
avoid the file to be served at all to the client. Changing the permissions to:
Code:
-r-sr-xr-x 1 root root 51K Jan 13 2010 rsh
gave the expected behavior again.
So it boils down to the question why in NFSv3 it’s possible to have access to
--x files, while in NFSv4 it must be
r-x for group/other?
NB: For the ones wondering about the purpose of a suid
rsh: it’s from the GridEngine queuing system to allow a tight integration of slaves tasks in former times as it was replaced by a built-in method. Nevertheless some touchy applications need the older startup of their slave tasks.