[KLUG Members] Re: fs permissions with smb/nfs/ldap

[Bryan J. Smith]

Chris Goron wrote:
> Understood. Just a hard thing to grasp at first when you
> are more used to NT and Netware networking.

Exactomundo!

I love how Windows users say "UNIX should be easier to network, there
should be a 'Network Neighborhood' that you can browse."  Then I hit
them with the security issues:

   My Q: "So you want UNIX systems tell everyone what it is and what it
has by default?"
Their A: "Yeah, why not?"
   My R: "Ever heard of 'security'?"

   My Q: "And which user gets to mount network filesystems?"
Their A: "Whoever is logged into the system."
   My R: "More than one person can be 'logged into' a UNIX system."

These are the "two big issues" when it comes to UNIX.

> Yup, got it. Autofs was the little gem I was looking for.
> I also have the permissions problem worked out now with NFS. Not sure
> what exactly the problem was I just stepped back through my LDAP
> config/setup on my server and bingo, I had the correct permissions.
> LDAP is very cool, now if they can incorporate the fs in LDAP.

If I remember correctly, you said you were using Samba also.  Be sure to
read my other post about DFS.  I don't know how many servers and how
your users are setup, but because Windows is build around the idea that
the server name is _forever_, Samba's DFS** capability is a _life_saver_
if you ever decide to change out servers.  ;-P

-- Bryan

**NOTE:  I tried running MS' DFS on a native NT 4.0 Server (which is a
downloadable add-on).  Best way to crash your server within a few days! 
Haven't tried native 2K/XP Servers with MS' DFS implementation, but it
works _perfectly_ with Samba 2.2 on Solaris and Linux for me.  Hence why
I don't put Windows servers on my network anymore.  ;-P

-- 
Bryan J. Smith, Engineer          mailto:b.j.smith@ieee.org
AbsoluteValue Systems, Inc.       http://www.linux-wlan.org
SmithConcepts, Inc.            http://www.SmithConcepts.com