| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <44EC6410.3030507@redhat.com>
Date: Wed, 23 Aug 2006 10:20:00 -0400
From: Peter Staubach <staubach@...hat.com>
To: Robert Szentmihalyi <robert.szentmihalyi@....de>
CC: ray-gmail@...rabbit.org, linux-kernel@...r.kernel.org
Subject: Re: Group limit for NFS exported file systems
Robert Szentmihalyi wrote:
>> On 8/23/06, Robert Szentmihalyi <robert.szentmihalyi@....de> wrote:
>>
>>> is there a group limit for NFS exported file systems in recent kernels?
>>> One if my users cannot access directories that belong to a group he
>>>
>> actually _is_ a
>>
>>> member of. That, however, is true only when accessing them over NFS. On
>>>
>> the local file
>>
>>> system, everything is fine. UIDs and GIDs are the same on client and
>>>
>> server, so that
>>
>>> cannot be the problem. Client and server run Gentoo Linux with kernel
>>>
>> 2.6.16 on the
>>
>>> server and 2.6.17 on the client.
>>>
>> Is he a member of more than 16 groups?
>>
>
> Yes. He is actually a member of 27 groups.
> Is the limit of 16 groups still current? I was under the impression that it is a limitation of 2.4 kernels....
> Is there any proper work-around for this?
The 16 group limit is defined by the specification for AUTH_SYS for the RPC.
It can not be easily changed without affecting interoperability.
The use of RPCSEC_GSS and Kerberos can remove this limit.
Thanx...
ps
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists