Path: archiver1.google.com!postnews1.google.com!not-for-mail
From: urs.tra...@swissonline.ch (Urs Traber)
Newsgroups: comp.unix.osf.osf1
Subject: automount with C2 security enabled
Date: 9 Oct 2003 11:11:47 -0700
Organization: http://groups.google.com
Lines: 38
Message-ID: <fcc8fc17.0310091011.5c542c5c@posting.google.com>
NNTP-Posting-Host: 146.188.50.17
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-Trace: posting.google.com 1065723107 29213 127.0.0.1 (9 Oct 2003 18:11:47 GMT)
X-Complaints-To: groups-abuse@google.com
NNTP-Posting-Date: Thu, 9 Oct 2003 18:11:47 +0000 (UTC)

Hello all,

I was experimenting a bit with the automount deamon on two DU 4.0E
systems. Both systems run with C2 security enabled.

The NFS server is also NIS master from where the maps auto.master,
auto.home (an indirect map) and auto.direct are distributed.

All works well on the NFS client (also NIS client) as long as I work
as root:
e.g. cd into an "indirect" mounted directory (cd /home/urs) mounts
server:/usr/users/urs on /tmp_mnt/home/urs and a link is created
/home/urs -> /tmp_mnt/home/urs
(/home/urs shows rwxrwxrwx and /tmp_mnt/home/urs rwx------
permissions)

However, when I try to log in as user 'urs' the system bails out with:

  No directory!
  logging in with home = '/'
  
  ...blabla...
  
  statfs() : in login : Permission denied
  rlogin : connection closed


Being back as root /tmp_mnt/home/urs is still mounted. Logging in with
server:/usr/users/urs hard-mounted on /home/urs worked.

Now I wonder what the login process on a system with C2 enabled is
doing. Does it check if the user's home directoy is really a directoy
and breaks up if its e.g. a link? Or do I simply have a silly
permission problem?

Any clues are greatly appreciated

Thanx Urs