Ok, scenario is as follows:
I want to export several ZFS filesystems via NFS. The permissions on these folders are 750, with a few files 700. I’d like to set up an unprivileged user who is able to access these folders with group privileges, so that I can map all UIDs to this user without either giving away any ‘only readable by owner’ files or making the folder world-readable.
This works alright locally: I can access exactly the files that I’m supposed to (as that user, in a shell), but whenever I mount the NFS export from another machine, the whole filesystem is unreadable, i.e. group permissions are completely ignored by nfsd. It works completely fine when either mapping UIDs to the owner or chmodding stuff 755, but that’s not the way I want to do it :/
Is this reproducable for you?
I want to export several ZFS filesystems via NFS. The permissions on these folders are 750, with a few files 700. I’d like to set up an unprivileged user who is able to access these folders with group privileges, so that I can map all UIDs to this user without either giving away any ‘only readable by owner’ files or making the folder world-readable.
This works alright locally: I can access exactly the files that I’m supposed to (as that user, in a shell), but whenever I mount the NFS export from another machine, the whole filesystem is unreadable, i.e. group permissions are completely ignored by nfsd. It works completely fine when either mapping UIDs to the owner or chmodding stuff 755, but that’s not the way I want to do it :/
Is this reproducable for you?