Secondary groups not working with NFS
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Expired
|
Undecided
|
Unassigned |
Bug Description
I´m using LDAP for groups and NFS for home dirs. My problem is as follows:
I only have a few groups, so it's not the problem everyone else had. When I've mounted a disk over NFS, I need to have my primary group in order to read in the groups I'm a member of. Secondary groups is not working.
Code:
root@machine:
...
gidNumber: 1504
displayName: secret
memberUid: user,anotheruser
root@machine:
user@machine:~$ groups
users secret
user@machine:~$ ls -ald ../secret/
drwxr-x--- 12 anotheruser secret 4096 2009-07-27 15:39 ../secret/
user@machine:~$ cd ../secret/
bash: cd: ../secret/: Permission denied
user@machine:~$ ls ../secret/
ls: cannot open directory ../secret/: Permission denied
But it works if I change the group to primary by hand with newgrp:
Code:
user@machine:~$ newgrp secret
user@machine:~$ cd ../secret/
user@machine:
Nice secrets.txt
But my users cannot be expected to do this!
The server where the real files are held (the NFS server) do not know anything about users. And it shouldn´t, it´s only job is to export files via NFS and do backups.
I've tested this on clients: 9.10 Karmic, 9.04 Jaunty, 8.10 Intrepid
The NFS server is running: 9.04 Jaunty.
description: | updated |
Changed in linux (Ubuntu): | |
status: | New → Incomplete |
Changed in linux (Ubuntu): | |
status: | Incomplete → New |
A nice fellow on ubuntuforums found the culprit.
Remove --manage-gids in /etc/default/ nfs-kernel- server
I guess this problem will just surface more and more as people replace the older Ubuntu server with newer systems. So I would look out for this bug, maybe fix it before you get a ton of broken systems... :-)