Issues with cross-protocol permissions - NFS/SMB/HTTP all to same spot
Hi all -
I've got some problems making a directory tree
transparently accessible via SMB, NFS, and HTTP all at the same time.
I have a Centos 5.X server (shortly to be 6.5) that I
have a directory on that is essentially _the_ main website/directory structure for the home network.
My home network consists of a mixture of Centos/Ubuntu/XP/Vista/Win7/Android platforms, which all need to access this site, either over SMB, NFS, or HTTP.
I don't have any harsh security requirements in particular, really any family user should be able to fully access any part of the structure and be able to have create/edit/save/delete rights to files.
What's tripping me up is even how to get sane access going for a single username - much less using groups to give the same access.
Writes really don't happen under HTTP, although having some sort of write access for a CMS system would be nice-
I just can't work out what the rights need to be for the Apache user who sees this under DocumentRoot, the various SMB users who access mapped drives on Winders, or
the NFS users who see it as mounted on /mnt.
I know that in NFS, one requirement is that I have matched UID/GID numbers--
I've adjusted that on the Ubuntu workstation, and made sure
the owner/group is the same.
NFS looks OK and appears to work -
now that I've appropriately chown'ed everything to matching usernames across the board.
Odds are, that just borked HTTP viewing of some pages.
And odds are equally good that now some SMB user
cannot save/edit/view files...
I think part of the HTTP problem is that I want it to be transparent to users -- I don't want to force a login to the pages on small children (or non-technical people like SWMBO)
So user apache is trying to access files that are owned/created by other users.
I know in smb.conf I can specify that all files created/edited
should always be a forced user - which would do well to fix the NFS piece, right??
I've tried reading various HOWTOs- but keep running into situtations where YMMV - and I suspect it's because the author's experience was with Xenix/FreeBSD, or was on some older version, etc--
And in any case, so much of the time people are thinking
"make NFS work", without considering how to make HTTP also work, and SMB also work...
I know this is long --
Can anyone give cross-protocol basic thoughts??