Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have a NAS appliance (Synology DiskStation), which exposes file shares through a variety of common protocols, including NFS and SMB/CIFS. The device has its own user set and permissions system for the files.
I also have a Linux server on which I wish to mount a share remotely. The server has users of the same names as those on the device. I wish the mount to occur automatically when the server starts, and to present the same file permissions to its local users as on the device. In this sense, the files would appear just as local files, that is, always available, and with per-file permissions respected.
I am not currently operating a domain.
To the extent possible, I prefer to avoid the following:
You can make an entry for each user and have it mount the share in their home directory. But this does mean that there needs to be a copy of their Synology username and password on the server for this to work, probably in each users home as well so they can update it when they change it.
Windows and linux permissions are not compatible and therefore samba maps DOS permissions. samba defaults to map archive = yes and Synology appears to work the same. Although files will appear as local there permissions will not be "respected" if I understand your post. https://www.oreilly.com/openbook/sam...k/ch05_03.html
With NFS permissions will be "respected" but I did not find anything easy to map local UIDs to Synology UIDs.
The suggestion of separate mounts for each user may be workable, but the requirement for provisioning explicitly for each user, in the mount table, causes some difficulties.
I think the approach has a further limitation, more subtle, but perhaps an even greater sense of difficulty. The shared files do not entirely comprise a set of subtrees, each corresponding to one user who has full and exclusive access to the contents. Rather, each separate item in the file tree has an ACL, and the system must enforce those privileges by accepting or denying users' access attempts the same as for attempted access on the file server.
Note the client understanding or modifying the permissions is not necessary, only that the server enforce them.
One more concern, as it seems that while CIFS has in some ways a more flexible permissions system for client access, I also recall that it lacks support for creating or modifying hard or symbolic links, which is a considerable limitation, and not found in NFS.
Last edited by brainchild; 06-08-2021 at 07:47 PM.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.