A problem with the Primary Administrator role and pfexec when homes are NFS mounted
Solaris / OpenSolarisThis forum is for the discussion of Solaris, OpenSolaris, OpenIndiana, and illumos.
General Sun, SunOS and Sparc related questions also go here. Any Solaris fork or distribution is welcome.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I know why this is produced (root cannot access my NFS mounted home directory and this is good) but this message it's a pain because the only solution I have is cd / and then work as usual.
Distribution: Solaris 10, Solaris Express Community Edition
Posts: 547
Original Poster
Rep:
Thanks stuart_cherrington, I suppose it could work.
The main reason I asked is because I think that's pretty common having homes mounted this way, and the trend is switching to RBAC rather than suing to root, which works correctly in this case. I was wondering how other administrators solve this issue.
Distribution: Solaris 10, Solaris Express Community Edition
Posts: 547
Original Poster
Rep:
Code:
I do not reproduce what you observe. Does it happens with ksh too ?
Thanks jlliagre, it didn't observe it immediately because I do use ksh, while the administrator I'm speaking about is a bash-addict.
I indeed observe the problem with ksh but not as soon as I pfexec it, so I think it isn't really a problem with ksh. If I make an ls it tells me that cannot access . (which is /home/theuseriam), which I believe its correct because the home directories are NFS mounted and their permission is 700, so root should be mapped to nobody and should not be able to access it. Correct?
ADDED: I understand that bash is executing getcwd because it's looking for its initialization script. The real problem with bash is that I cannot execute anything until I go out of the unreadable directory (that's why I cd /), while ksh is much lenient. If I try to cd /anotherdir with bash, the same error is displayed, while with cd / it doesn't happen. I recognize it's weird.
Last edited by crisostomo_enrico; 11-05-2008 at 04:22 AM.
Distribution: Solaris 11.4, Oracle Linux, Mint, Debian/WSL
Posts: 9,789
Rep:
I'm able to run commands and to change to non root directories while running either bash or ksh.
I thought the privileged subshell wasn't launched but in fact it is so these are only warning messages that correctly report access issues.
You might want to truss the shell to see why it fails in your case.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.