Dear list, I have a problem which I couldn't solve on my own yet. Following scenario (Beowulf-type cluster) : Masternode = NFS + NIS server. slave nodes either diskless or with own disk. Now, I've upgraded the masternode from SuSE 7.1 to 7.3 (heaven knows why). YP and that stuff all works fine both on the diskless and the diskowning slaves. the diskless slave mount their rootfs normally from the masternode, BUT: no user except root can execute something. I.e. nobody except root can login. e.g. "scandium" being diskless 15:58 phosphorus ~> ssh root@scandium root@scandium's password: Last login: Wed Mar 13 17:06:40 2002 Have a lot of fun... scandium:~ # su -c date christof su: cannot run /bin/tcsh: Permission denied The same error message gives me a direct ssh-login: 16:22 phosphorus ~> ssh christof@scandium christof@scandium's password: Last login: Wed Mar 13 16:53:17 2002 from gnasher.phy.qub.ac.uk Have a lot of fun... /bin/tcsh: Permission denied Connection to scandium closed. Direct login at the console fails, too. Phosphorus is a disk-owning slave and all works well. The OS (i.e. all the kernel and all the utilities) on phosphorus and scandium are exactly the same. Thus I think, it should be a NFSD related problem, anyway here the relevant parts of the config-files of the masternode: ~> more /etc/exports # See exports(5) for a description. # This file contains a list of all directories exported to other computers. # It is used by rpc.nfsd and rpc.mountd. /q 192.168.2.0/255.255.255.0(rw,no_root_squash) /dalton 192.168.2.0/255.255.255.0(rw,no_root_squash) /tftpboot 192.168.2.0/255.255.255.0(rw,no_root_squash) /usr/local/mpich-1.2.1 192.168.2.0/255.255.255.0(ro,root_squash) ~ # more /etc/hosts.allow # See tcpd(8) and hosts_access(5) for a description. YPSERV: 127.0.0.0/255.0.0.0 192.168.2.0/255.255.255.0 ALL : 192.168.2.0/255.255.255.0 PORTMAP: 192.168.2.0/255.255.255.0 rpc.mountd : 192.168.2.0/255.255.255.0 rpc.nfsd : 192.168.2.0/255.255.255.0 rpc.ugidd : 192.168.2.0/255.255.255.0 All the rootfs of the slaves are in /tftpboot, as you have already guessed. Any help would be much appreciated. My problem thus is not too little but too much security, but I hope you don't mind.... Thanks, Christof
Hi, ls -l /bin/tcsh as root on the client should show you the permissions of that, is it 644 it's more a nfs problem, if not you have a file permissions problem on the server. HTH -- intraDAT AG http://www.intradat.com Wilhelm-Leuschner-Strasse 7 Tel: +49 69-25629-0 D - 60329 Frankfurt am Main Fax: +49 69-25629-256 Junk mail is war. RFCs do not apply.
participants (2)
-
Christof Hanke
-
Sven Michels