Subj : Re: NFS File Area Issue
To   : paulie420
From : deon
Date : Thu Mar 25 2021 13:34:21

  Re: Re: NFS File Area Issue
  By: paulie420 to deon on Wed Mar 24 2021 05:05 pm

Howdy,

 pa> Ok, but... I'm following a lot of what you just typed. I am familiar with 
like... level 1 permissions on a local box. I'm not great with (or, I just 
haven't had a need until NOW...) groups or userIDs. However, I've added my user 









































































































































































































































































































































































































































































































































































































































































































































































































































































































to a group before on
 pa> the NAS system and understand groups a LITTLE.
 pa> So... I do know that my UID is 1001 on the NAS system. I'm reading about 
NFS permissions and think that I'll be able to figure things out. 

So imagine you are logged into your NAS - and in a directory it has a file like 









































































































































































































































































































































































































































































































































































































































































































































































































































































































this:

#ls -al

-rw-r-----  1 paulie420 users 1561 Mar 25 12:39 My_File

If "paulie420" is UID 1001 and "users" is GID 1000, then this is actually:

-rw-r-----  1 1001 1000 1561 Mar 25 12:39 My_File

Where:

* The size of "My_File" is 1561 bytes in size,
* Anybody with UID can read/write (the first rw-)
* Anybody with GID can only read (the second r--)
* Any user who is not the UID and is not in a group with the GID has no access 
(the third ---)

When you present this file to your PI via NFS - it is still the same:

-rw-r-----  1 1001 1000 1561 Mar 25 12:39 My_File

And the access rules still apply (as above).

So if you want to be able to read the file, you must:
* Be a member of a group that has GID 1000, OR
* Be a user with UID 1001.

You can only write to the file, if you are a user with UID 1001.

And if you are not a user with UID 1001, and not in a group with GID 1000, then 









































































































































































































































































































































































































































































































































































































































































































































































































































































































you cant access the file at all.

 pa> I'm probably off base, but... could I create a 'pi' user with read/write 
access on the NAS system, which is the NFS?

No, wont make any difference. Users actually dont need to exist on the NAS - 
becase all access control decisions are based on "numbers" not "text" (that 
represents users and group names).

....כמון

.... I think sex is better than logic, but I can't prove it.
--- SBBSecho 3.13-Linux
 * Origin: I'm playing with ANSI+videotex - wanna play too? (1337:2/101)

.