Summary: | mountd authentication failure with subnets in exports | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Arthur Hagen <art-gt> |
Component: | [OLD] Server | Assignee: | Gentoo's Team for Core System packages <base-system> |
Status: | CONFIRMED --- | ||
Severity: | normal | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Arthur Hagen
2006-09-17 18:21:02 UTC
can you upgrade to nfs-utils-1.0.12 and see if this is still a problem ? (In reply to comment #1) > can you upgrade to nfs-utils-1.0.12 and see if this is still a problem ? > Still a problem with nfs-utils-1.0.12. It only appears to happen when having multiple entries in /etc/exports that are ip/mask based. If specifying hostnames or netgroups in exports, everything is fine. From troubleshooting more, it appears to be DNS callout related. The mountd authentication appears to only accept the IP without checking DNS for the first entry in /etc/exports. For subsequent entries, the reverse DNS (or similar, depending on resolver methods) is checked, and access denied if it doesn't match the hostname. This makes sense for name based access lists, but not when the IP matches. That it doesn't happen for the first entry makes me suspect there's a conditional for when to check the hostname that isn't reset between entries. |