LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   NAS shared folder permission problem (https://www.linuxquestions.org/questions/linux-server-73/nas-shared-folder-permission-problem-678371/)

Alex_trebek 10-22-2008 01:57 PM

NAS shared folder permission problem
 
Hi everyone,

We recently installed a network attached storage device to host all our /home directories, including our shared directory. For some reason, the permissions didn't come out quite as expected. For example, I don't have access to any of the folders except my own, although that is point of the shared folder.

For example, I can't access /home/shared/mark, although the permissions are set to 777 (just for this purpose) and despite the fact that I'm in the same group as him. If I change the group to "root", then I can access his folder. Could it be that the name of the group is the same but the actual group number is different? What would be the adverse effect of me changing the group of all the folders to 'root'?

Sorry about the crude description, I hope you can make sense of it. Let me know what other information you may need.

Thanks!

Yaniv-Fer 10-23-2008 08:17 AM

Hello Alex_trebek




what about creating a new "group" lets say team1

choose the members that should be in this new group...


and start from this point to give the correct permissions on folders...


if you start to work wrong... it will just get worst....

Alex_trebek 10-23-2008 04:55 PM

Hmm.... thanks for the tip. The weird issue is that all the users are already supposed to be part of the same group. Are there any commands that I can use to figure out what actual GID the folder belongs to and what GID my user account is? Maybe they get messed up between the NAS and the workstations?

And does anyone know if there is a security issue by simply changing all the folders to group 'root'?

Yaniv-Fer 10-24-2008 02:18 PM

Hello Alex_trebek


Are there any commands that I can use to figure out what actual GID the folder belongs to

you can use
Code:

ls -n
Code:

[Yaniv@fc9-pc exports]$ ls -n
total 28
drwxrwsr-x  8 0 502 4096 2008-10-11 16:25 appz
drwxrwsr-x 15 0 502 4096 2008-10-24 19:38 downloads


for more options please use
Code:

man ls

what GID my user account is?

you can use
Code:

id
Code:

[Yaniv@fc9-pc exports]$ id
uid=500(Yaniv) gid=500(Yaniv) groups=500(Yaniv),502(smbusers)
[Yaniv@fc9-pc exports]$


also if you would like to see group members please check

Code:

[Yaniv@fc9-pc exports]$ cat /etc/group

good luck

Alex_trebek 10-24-2008 03:29 PM

Hi Yaniv-Fer,

Thanks for your help. My apologies about not knowing such basic commands, but I'm still very much a beginner.

Using these commands, I've noticed a couple of things.

1) Depending on which workstation I'm using, I get different output permissions.

Red Hat:
ls -n
drwxrwxrwx 2 824 600 4096 Oct 15 14:24 zoya/

Fedora:
ls -n
drwxrwxrwx+ 2 824 600 4096 2008-10-15 14:24 zoya

My understanding is this has something to do with ACLs? Is this the problem - i.e. the NAS uses ACL but the rest of the comps are not setup to use ACLs?!

2) The GID on the folders seem to be correct and I am part of this group, but still have no access to the folders.

uid=10003(byron) gid=600(ldapusers) groups=600(ldapusers),10001(domainusers)

3) The group, although I am part of it, is not listed under /etc/group

There is a group named ldap, but ldapusers (GID 600) is absent.

Any ideas or suggested readings would be great!

Yaniv-Fer 10-24-2008 05:23 PM

My apologies about not knowing such basic commands, but I'm still very much a beginner.


we are here to learn...



in order to help you better...

please tell me more details about your network...

NAS server... the name and ip

clients... name and ip


about ACLs
you can use
Code:

getfacl
to see the ACLs on a folder...

anyway... if the server (NAS) is configured to use ACLs...

it will override client settings...

if you would like to disable ACLs you will have to edit
Code:

vi /etc/fstab

i would like to explain it a little more...

if you would like to use ACLs you would have only to enable and configure it on the NAS server...

the clients to NOT need any special configuration...


oh also... are you using NIS or something like that?

EDIT:

i just read you post again...
i am not familiar with ldap configurations...
i am asking myself now... are you using ldap?
or is it just a group called ldap?


All times are GMT -5. The time now is 09:11 AM.