NFS cache permissions

Bruno Galindro da Costa bruno.galindro at gmail.com
Thu Nov 12 19:41:34 UTC 2009


Hi yall,

Is it possible to clear the nfs cache permissions? I´m asking this
because I´ve made a NFS share with client access restrictions and the
users that have no more permissions, can still access the share.

The share has the following permissions (2770):

    drwxrws---  5 nobody vmail  1024 Nov 12 09:47 email

Only users that are within the vmail group can access the share. The
/etc/exports file has the following content (192.168.1.22 is the
client´s IP address):

     /mnt/vol0/email
192.168.1.22/255.255.255.255(rw,anonuid=5000,anongid=5000,secure,root_squash,wdelay,sync)

On the client, I´ve created a vmail group with the same UID of the
server (5000), and mounted the exported filesystem with the following
command (192.168.1.1 is the server´s IP address):

     mount -t nfs -o rsize=8192,wsize=8192  192.168.1.1:/mnt/vol0/email/ /email/

Right after executing the above command, I´ve added a user (abc) in
the vmail group and that user can access the share perfectly. So far
so god. BUT, when I remove that user from vmail group, logoff and
logon again, the user still has access to the share!
After unmounting and remounting the NFS filesystem, the user still has
the access!

Is this because the client computer has a NFS cache permissions? If
yes, how can I clear that cache?

PS.: After reading this - http://nfs.sourceforge.net/ - I´ve mounted
the share with the option "noac" to prevent client's file attribute
cache. But, it isn´t working.




More information about the fedora-list mailing list