Exporting NTFS filesystems over NFS
Daniel J Walsh
dwalsh at redhat.com
Mon Oct 24 14:46:32 UTC 2005
Göran Uddeborg wrote:
> The policy apparently does not allow exporting an NTFS filesystem over
> NFS. I can't see any obvious reason for this choice, but maybe there
> is something I miss. Is this intentional, or is it a mistake? Or in
> other words, should I bugzilla or only figure out how to change it for
> myself?
>
> The error message I get trying to export an NTFS fileystem is included
> below. (If I go into permissive mode everything works as expected.)
>
> type=AVC msg=audit(1130008471.475:403): avc: denied { getattr } for pid=9034 comm="exportfs" name="/" dev=sda1 ino=5 scontext=root:system_r:nfsd_t tcontext=system_u:object_r:dosfs_t tclass=dir
> type=SYSCALL msg=audit(1130008471.475:403): arch=40000003 syscall=196 success=no exit=-13 a0=ffffb80b a1=ffffb76c a2=f7fc2ff4 a3=8052712 items=1 pid=9034 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="exportfs" exe="/usr/sbin/exportfs"
> type=AVC_PATH msg=audit(1130008471.475:403): path="/mnt/remote/teddi"
> type=CWD msg=audit(1130008471.475:403): cwd="/etc/selinux/strict/contexts/users"
> type=PATH msg=audit(1130008471.475:403): item=0 name="/mnt/remote/teddi" flags=0 inode=5 dev=08:01 mode=040555 ouid=0 ogid=0 rdev=00:00
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
do you have the nfs booleans turned on?
getsebool -a | grep nfs_export
nfs_export_all_ro --> active
nfs_export_all_rw --> active
Dan
--
More information about the fedora-selinux-list
mailing list