Hi,
I'm currently trying to figure out to set restrictive but working permissions...
... that's not really working... I'm lacking the "ahaaaa!!!" moment.
I've been looking into the docs and for a NFS share there is this example:
For the dataset I've set the following options:
- ACL Mode: Passthrough
- User: nobody
- Group: nobody
- Permissions: drwxrwx--- (770)
For the NFS share I've set the following options:
- All directories: not set (Since I don't want to mount any subdirectory but only the share itself - guess that's correct?)
- Allow my local network (10.0.0.0/24)
- MapRoot User & Group: not set
- MapAll User & Group: nobody
However my Proxmox is not getting access to the share.
Even if I set 777 on the dataset I'm not getting access?
Why? dafuq?
And as I've understand the purpose of assigning "nobody" is that nobody can get root rights on the share by mistake? Right?
I'm currently trying to figure out to set restrictive but working permissions...
... that's not really working... I'm lacking the "ahaaaa!!!" moment.
I've been looking into the docs and for a NFS share there is this example:
Code:
The FreeNAS® system is at IP address 192.168.2.2. A dataset named /mnt/pool1/nfs_share1 is created and the permissions set to the nobody user account and the nobody group. An NFS share is created with these attributes: Path: /mnt/pool1/nfs_share1 Authorized Networks: 192.168.2.0/24 All dirs option is enabled MapAll User is set to nobody MapAll Group is set to nobody
For the dataset I've set the following options:
- ACL Mode: Passthrough
- User: nobody
- Group: nobody
- Permissions: drwxrwx--- (770)
For the NFS share I've set the following options:
- All directories: not set (Since I don't want to mount any subdirectory but only the share itself - guess that's correct?)
- Allow my local network (10.0.0.0/24)
- MapRoot User & Group: not set
- MapAll User & Group: nobody
However my Proxmox is not getting access to the share.
Even if I set 777 on the dataset I'm not getting access?
Why? dafuq?
And as I've understand the purpose of assigning "nobody" is that nobody can get root rights on the share by mistake? Right?