2 .\" Original manual page is a part of nfs-server package.
3 .\" Following is a exerpt from README of version 2.2beta47.
7 .\" Much of the code in this package was originally written by
8 .\" Mark Shand, and is placed under the following copyright:
10 .\" This software may be used for any purpose provided
11 .\" the above copyright notice is retained. It is
12 .\" supplied as is, with no warranties expressed or
15 .\" Other code, especially that written by Rick Sladkey and some
16 .\" replacement routines included from the GNU libc, are covered
17 .\" by the GNU General Public License, version 2, or (at your
18 .\" option) any later version.
20 .\" Japanese Version Copyright (c) 1997 ISHIOKA Takashi
21 .\" all rights reserved.
22 .\" Translated Mon Sep 8 14:02:18 1997
23 .\" by ISHIOKA Takashi
24 .\" Mon Feb 9 15:16:20 1998: correction
25 .\" Modified Wed 11 Nov 1998 by NAKANO Takeo <nakano@apm.seikei.ac.jp>
26 .\" Updated & Modified Sun Jan 27 17:30:35 JST 2002
27 .\" by Yuichi SATO <ysato@h4.dion.ne.jp>
28 .\" Modified Tue Feb 19 19:06:53 JST 2002 by Yuichi SATO
30 .TH EXPORTS 5 "11 August 1997"
33 .\"O exports \- NFS file systems being exported
35 exports \- ¥¨¥¯¥¹¥Ý¡¼¥È (export) ¤µ¤ì¤ë NFS ¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à
43 .\"O serves as the access control list for file systems which may be
44 .\"O exported to NFS clients. It it used by both the NFS mount daemon,
46 .\"O and the NFS file server daemon
49 ¥Õ¥¡¥¤¥ë¤Ï¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤Î¥¢¥¯¥»¥¹¥³¥ó¥È¥í¡¼¥ë¥ê¥¹¥È¤Ç¡¢
50 ¤É¤Î¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ò NFS ¥¯¥é¥¤¥¢¥ó¥È¤Ë¥¨¥¯¥¹¥Ý¡¼¥È (export) ¤·¤Æ¤è¤¤¤«¡¢
52 ¤³¤ì¤Ï NFS mount ¥Ç¡¼¥â¥ó
55 NFS file server ¥Ç¡¼¥â¥ó
59 .\"O The file format is similar to the SunOS
61 .\"O file, except that several additional options are permitted. Each line
62 .\"O contains a mount point and a list of machine or netgroup names allowed
63 .\"O to mount the file system at that point. An optional parenthesized list
64 .\"O of mount parameters may follow each machine name. Blank lines are
65 .\"O ignored, and a # introduces a comment to the end of the line. Entries may
66 .\"O be continued across newlines using a backslash.
67 ¤³¤Î¥Õ¥¡¥¤¥ë¤Î½ñ¼°¤Ï SunOS ¤Î
69 ¥Õ¥¡¥¤¥ë¤È¤Û¤ÜƱ¤¸¤Ç¤¢¤ë¡£¤¿¤À¤·»ØÄê¤Ç¤¤ë¥ª¥×¥·¥ç¥ó¤¬
70 ¤¤¤¯¤Ä¤«Äɲ䵤ì¤Æ¤¤¤ë¡£
71 ¤½¤ì¤¾¤ì¤Î¹Ô¤Ë¤Ï¡¢¥Þ¥¦¥ó¥È¥Ý¥¤¥ó¥È¤È¡¢
72 ¤½¤Î¥Ý¥¤¥ó¥È¤Î¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ò¥Þ¥¦¥ó¥È¤Ç¤¤ë
73 ¥Þ¥·¥ó¤ä¥Í¥Ã¥È¥°¥ë¡¼¥×¤Î¥ê¥¹¥È¤¬½ñ¤«¤ì¤Æ¤¤¤ë¡£
74 ¥Þ¥¦¥ó¥È¥Ñ¥é¥á¡¼¥¿¤Î¥ê¥¹¥È¤ò³ç¸Ì¤Ç¤¯¤¯¤Ã¤¿¤â¤Î¤ò¡¢
75 ¤½¤ì¤¾¤ì¤Î¥Þ¥·¥ó¤Î̾Á°¤Î¸å¤ËÃÖ¤¯¤³¤È¤â¤Ç¤¤ë¡£
76 ¶õ¹Ô¤Ï̵»ë¤µ¤ì¡¢# °Ê¹ß¹ÔËö¤Þ¤Ç¤Ï¥³¥á¥ó¥È¤È¤ß¤Ê¤µ¤ì¤ë¡£
77 ¹ÔËö¤Ë¥Ð¥Ã¥¯¥¹¥é¥Ã¥·¥å¤ò¤ª¤±¤Ð¡¢¥¨¥ó¥È¥ê¤Ï¼¡¤Î¹Ô¤Ë·Ñ³¤Ç¤¤ë¡£
79 .\"O .SS Machine Name Formats
80 .SS ¥Þ¥·¥ó̾¤Î¥Õ¥©¡¼¥Þ¥Ã¥È
81 .\"O NFS clients may be specified in a number of ways:
82 NFS ¥¯¥é¥¤¥¢¥ó¥È¤Ï¤¤¤í¤¤¤í¤ÊÊýË¡¤Ç»ØÄê¤Ç¤¤ë¡£
84 .\"O This is the most common format. You may specify a host either by an
85 .\"O abbreviated name recognizued be the resolver, the fully qualified domain
86 .\"O name, or an IP address.
87 ¤³¤ì¤Ï¤â¤Ã¤È¤âÉáÄ̤Υե©¡¼¥Þ¥Ã¥È¤Ç¤¢¤ë¡£¥Û¥¹¥È¤Î»ØÄê¤Ë¤Ï¡¢
88 ¥ì¥¾¥ë¥Ð¤¬Ç§¼±¤Ç¤¤ë¾Êά·Á¡¢FQDN¡¢IP ¥¢¥É¥ì¥¹¤Î¤É¤ì¤òÍѤ¤¤Æ¤â¤è¤¤¡£
90 .\"O NIS netgroups may be given as
92 .\"O Only the host part of all
93 .\"O netgroup members is extracted and added to the access list. Empty host
94 .\"O parts or those containing a single dash (\-) are ignored.
95 NIS ¤Î¥Í¥Ã¥È¥°¥ë¡¼¥×¤ò
97 ¤Î¤è¤¦¤ËÍ¿¤¨¤ë¤³¤È¤¬¤Ç¤¤ë¡£¥Í¥Ã¥È¥°¥ë¡¼¥×¤Î¤¹¤Ù¤Æ¤Î¥á¥ó¥Ð¡¼¤Î¤¦¤Á¡¢
98 ¥Û¥¹¥È¤ÎÉôʬ¤À¤±¤¬¼è¤ê½Ð¤µ¤ì¡¢¥¢¥¯¥»¥¹¥ê¥¹¥È¤ËÄɲ䵤ì¤ë¡£
99 ¥Û¥¹¥È¤ÎÉôʬ¤¬¶õ¤À¤Ã¤¿¤ê¡¢Ã±°ì¤Î¥À¥Ã¥·¥å (\-) ¤À¤Ã¤¿¤â¤Î¤Ï̵»ë¤µ¤ì¤ë¡£
102 .\"O Machine names may contain the wildcard characters \fI*\fR and \fI?\fR.
103 .\"O This can be used to make the \fIexports\fR file more compact; for instance,
104 .\"O \fI*.cs.foo.edu\fR matches all hosts in the domain \fIcs.foo.edu\fR. However,
105 .\"O these wildcard characters do not match the dots in a domain name, so the
106 .\"O above pattern does not include hosts such as \fIa.b.cs.foo.edu\fR.
107 ¥Þ¥·¥ó̾¤Î»ØÄê¤Ë¤Ï¡¢¥ï¥¤¥ë¥É¥«¡¼¥Éʸ»ú¤È¤·¤Æ
108 \fI*\fP ¤È \fI?\fP ¤òÍѤ¤¤ë¤³¤È¤¬¤Ç¤¤ë¡£
109 ¤³¤ì¤é¤ò»È¤¦¤È \fIexports\fR ¥Õ¥¡¥¤¥ë¤ò¥³¥ó¥Ñ¥¯¥È¤Ë¤Ç¤¤ë¡£
110 Î㤨¤Ð \fI*.cs.foo.edu\fR ¤Ï¥É¥á¥¤¥ó \fIcs.foo.edu\fR ¤Ë¤¢¤ë
111 ¤¹¤Ù¤Æ¤Î¥Û¥¹¥È¤Ë¥Þ¥Ã¥Á¤¹¤ë¡£
112 ¤¿¤À¤·¡¢¤³¤ì¤é¤Î¥ï¥¤¥ë¥É¥«¡¼¥Éʸ»ú¤Ï¥É¥á¥¤¥ó̾¤Î¥É¥Ã¥È (.) ¤Ë¤Ï¥Þ¥Ã¥Á¤·¤Ê¤¤¡£
113 ¤·¤¿¤¬¤Ã¤Æ¾åµ¤Î¥Ñ¥¿¡¼¥ó¤Ï¡¢¥É¥á¥¤¥óÆâ¤Î
114 \fIa.b.cs.foo.edu\fR ¤Î¤è¤¦¤Ê¥Û¥¹¥È¤Ë¤Ï¥Þ¥Ã¥Á¤·¤Ê¤¤¡£
116 .\"O You can also export directories to all hosts on an IP (sub-) network
117 .\"O simultaneously. This is done by specifying an IP address and netmask pair
119 .\"O .IR address/netmask .
120 ¥Ç¥£¥ì¥¯¥È¥ê¤ò IP ¤Î (¥µ¥Ö) ¥Í¥Ã¥È¥ï¡¼¥¯¤Ë¸ºß¤¹¤ë¤¹¤Ù¤Æ¤Î¥Û¥¹¥È¤Ë
121 Ʊ»þ¤Ë¥¨¥¯¥¹¥Ý¡¼¥È¤¹¤ë¤³¤È¤â¤Ç¤¤ë¡£
122 ¤³¤ì¤Ë¤Ï IP ¥¢¥É¥ì¥¹¤È¥Í¥Ã¥È¥Þ¥¹¥¯¤Î¥Ú¥¢¤ò
124 ¤Î¤è¤¦¤Ë»ØÄꤹ¤ì¤Ð¤è¤¤¡£
127 .\"O This is a special ``hostname'' that identifies the given directory name
128 .\"O as the public root directory (see the section on WebNFS in
130 .\"O for a discussion of WebNFS and the public root handle). When using this
133 .\"O must be the only entry on this line, and must have no export options
134 .\"O associated with it. Note that this does
136 .\"O actually export the named directory; you still have to set the exports
137 .\"O options in a separate entry.
138 ¤³¤ì¤ÏÆüì¤Ê°ÕÌ£¤ò»ý¤Ä¡Ö¥Û¥¹¥È̾¡×¤Ç¡¢¤½¤ÎÁ°¤ËÍ¿¤¨¤é¤ì¤¿¥Ç¥£¥ì¥¯¥È¥ê
139 ¤¬ public root ¥Ç¥£¥ì¥¯¥È¥ê¤Ç¤¢¤ë¤³¤È¤ò¼¨¤¹
140 (WebNFS ¤È public root ¥Ï¥ó¥É¥ë¤Î¾ÜºÙ¤Ë´Ø¤·¤Æ¤Ï
142 ¤Î WebNFS ¤Î¥»¥¯¥·¥ç¥ó¤ò»²¾È¤Î¤³¤È)¡£
143 ¤³¤Î½ñ¼°¤òÍѤ¤¤ëºÝ¤Ë¤Ï¡¢
145 ¤¬¤½¤Î¹Ô¤Ç¤ÎÍ£°ì¤Î¥Û¥¹¥È̾¥¨¥ó¥È¥ê¤Ç¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¡£
146 ¤Þ¤¿¥¨¥¯¥¹¥Ý¡¼¥È¥ª¥×¥·¥ç¥ó¤ò»ØÄꤷ¤Æ¤Ï¤Ê¤é¤Ê¤¤¡£
148 ¥Ç¥£¥ì¥¯¥È¥ê¤¬¼ÂºÝ¤Ë¥¨¥¯¥¹¥Ý¡¼¥È¤µ¤ì¤ë¤ï¤±¤Ç¤Ï\fB¤Ê¤¤\fP¤³¤È¤ËÃí°Õ¤¹¤ë¤³¤È¡£
149 ¥¨¥¯¥¹¥Ý¡¼¥È¥ª¥×¥·¥ç¥ó¤Ï¡¢¤³¤ì¤È¤ÏÊ̤Υ¨¥ó¥È¥ê¤Ç»ØÄꤹ¤ëɬÍפ¬¤¢¤ë¡£
151 .\"O The public root path can also be specified by invoking
154 .\"O .B \-\-public\-root
155 .\"O option. Multiple specifications of a public root will be ignored.
160 ¥ª¥×¥·¥ç¥ó¤ò»ØÄꤷ¤Æµ¯Æ°¤¹¤ë¤³¤È¤Ë¤è¤Ã¤Æ¤â»ØÄê¤Ç¤¤ë¡£
161 public root ¤ÎÊ£¿ô»ØÄê¤Ï̵»ë¤µ¤ì¤ë¡£
163 .\"O .SS General Options
164 .SS °ìÈÌŪ¤Ê¥ª¥×¥·¥ç¥ó
165 .\"O .IR mountd " and " nfsd
166 .\"O understand the following export options:
167 .IR mountd " ¤È " nfsd
168 ¤Ï°Ê²¼¤Î¥¨¥¯¥¹¥Ý¡¼¥È¥ª¥×¥·¥ç¥ó¤ò¼õ¤±ÉÕ¤±¤ë¡£
171 .\"O This option requires that requests originate on an internet port less
172 .\"O than IPPORT_RESERVED (1024). This option is on by default. To turn it
175 ¤³¤Î¥ª¥×¥·¥ç¥ó¤ò»ØÄꤹ¤ë¤È¡¢IPPORT_RESERVED (1024) ¤è¤ê¾®¤µ¤Ê
176 internet ¥Ý¡¼¥È¤«¤éȯ¤·¤¿¥ê¥¯¥¨¥¹¥È¤·¤«¼õ¤±¤Ä¤±¤Ê¤¤¡£
177 ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç͸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£
183 .\"O Allow the client to modify files and directories. The default is to
184 .\"O restrict the client to read-only request, which can be made explicit
186 .\"O .IR ro " option.
187 ¥¯¥é¥¤¥¢¥ó¥È¤Ë¤è¤ë¥Õ¥¡¥¤¥ë¤È¥Ç¥£¥ì¥¯¥È¥ê¤ÎÊѹ¹¤òµö²Ä¤¹¤ë¡£
188 ¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¡¢¥¯¥é¥¤¥¢¥ó¥È¤ÏÆɤ߹þ¤ß¤Î¥ê¥¯¥¨¥¹¥È¤À¤±¤ËÀ©¸Â¤µ¤ì¤Æ¤¤¤ë¡£
191 ¥ª¥×¥·¥ç¥ó¤ÇÌÀ¼¨¤·¤¿¾ì¹ç¤âƱ¤¸)¡£
194 .\"O This makes everything below the directory inaccessible for the named
195 .\"O client. This is useful when you want to export a directory hierarchy to
196 .\"O a client, but exclude certain subdirectories. The client's view of a
197 .\"O directory flagged with noaccess is very limited; it is allowed to read
198 .\"O its attributes, and lookup `.' and `..'. These are also the only entries
199 .\"O returned by a readdir.
200 ¤³¤Î¥ª¥×¥·¥ç¥ó¤òÉÕ¤±¤¿¥¯¥é¥¤¥¢¥ó¥È¤Ï¡¢
201 ¤½¤Î¥Ç¥£¥ì¥¯¥È¥ê°Ê²¼¤Î¤¹¤Ù¤Æ¤Î¥Õ¥¡¥¤¥ë¤ËÂФ·¤Æ¥¢¥¯¥»¥¹¤Ç¤¤Ê¤¯¤Ê¤ë¡£
202 ¤¢¤ë¥Ç¥£¥ì¥¯¥È¥ê³¬Áؤò¥¯¥é¥¤¥¢¥ó¥È¤Ë¥¨¥¯¥¹¥Ý¡¼¥È¤¹¤ë¤È¤¡¢
203 ÆÃÄê¤Î¥µ¥Ö¥Ç¥£¥ì¥¯¥È¥ê¤ò½ü¤¤¿¤¤¾ì¹ç¤Ê¤É¤ËÊØÍø¤Ç¤¢¤ë¡£
204 noaccess ¥Õ¥é¥°¤¬ÉÕ¤¤¤¿¥Ç¥£¥ì¥¯¥È¥ê¤Î¥¯¥é¥¤¥¢¥ó¥È¤«¤é¤Î¸«¤¨Êý¤Ï¡¢
205 Èó¾ï¤ËÀ©¸Â¤µ¤ì¤¿¤â¤Î¤È¤Ê¤ë¡£
206 ¥Ç¥£¥ì¥¯¥È¥ê°À¤È¡¢`.' ¤ª¤è¤Ó `..' ¤Î±ÜÍ÷¤À¤±¤¬µö¤µ¤ì¤ë¡£
207 readdir ¤ËÂФ·¤ÆÊÖ¤µ¤ì¤ë¥¨¥ó¥È¥ê¤â¤³¤Î 2 ¤Ä¤À¤±¤Ë¤Ê¤ë¡£
210 .\"O Convert absolute symbolic links (where the link contents start with a
211 .\"O slash) into relative links by prepending the necessary number of ../'s
212 .\"O to get from the directory containing the link to the root on the
213 .\"O server. This has subtle, perhaps questionable, semantics when the file
214 .\"O hierarchy is not mounted at its root.
215 ÀäÂХѥ¹·Á¼°¤Î¥·¥ó¥Ü¥ê¥Ã¥¯¥ê¥ó¥¯¤òÁêÂХѥ¹·Á¼°¤Î¥ê¥ó¥¯¤ËÊÑ´¹¤¹¤ë
216 (ÀäÂХѥ¹·Á¼°¤È¤Ï¡¢¥ê¥ó¥¯¤ÎÆâÍƤ¬ "/" ¤Ç»Ï¤Þ¤ë¤â¤Î¤Ç¤¢¤ë)¡£
217 ÊÑ´¹¤Ï¼¡¤Î¤è¤¦¤Ë¹Ô¤ï¤ì¤ë¡£
218 ¤Þ¤º¥ê¥ó¥¯¤¬ÃÖ¤«¤ì¤Æ¤¤¤ë¥Ç¥£¥ì¥¯¥È¥ê¤Î¡¢¥µ¡¼¥Ð¤Î¥ë¡¼¥È¤«¤é¤Î
219 ¿¼¤µ¤ò¼èÆÀ¤¹¤ë¡£¤½¤·¤Æ¤½¤Î¿ô¤À¤± '../' ¤òÀäÂÐ¥ê¥ó¥¯¤ÎÁ°¤ËÉղ乤롣
220 ¥Þ¥¦¥ó¥È¥Ý¥¤¥ó¥È¤Î¥ë¡¼¥È¤«¤é¤Î°ÌÃÖ¤¬°Û¤Ê¤ë¾ì¹ç¡¢
221 ¤³¤ÎÊÑ´¹¤Ë¤ÏÈù̯¤Ê (¤ª¤½¤é¤¯¾ã³²¤Î¸¶°ø¤È¤Ê¤ë)
222 ¤¢¤¤¤Þ¤¤¤µ¤¬´Þ¤Þ¤ì¤ë²ÄǽÀ¤¬¤¢¤ë¡£
225 .\"O Leave all symbolic link as they are. This is the default operation.
226 Á´¤Æ¤Î¥·¥ó¥Ü¥ê¥Ã¥¯¥ê¥ó¥¯¤ò¤½¤Î¤Þ¤Þ¤Ë¤¹¤ë¡£¤³¤ì¤¬¥Ç¥Õ¥©¥ë¥È¤Ç¤¢¤ë¡£
227 .\"O .SS User ID Mapping
228 .SS ¥æ¡¼¥¶ ID ¤Î¥Þ¥Ã¥Ô¥ó¥°
231 .\"O bases its access control to files on the server machine on the uid and
232 .\"O gid provided in each NFS RPC request. The normal behavior a user would
233 .\"O expect is that she can access her files on the server just as she would
234 .\"O on a normal file system. This requires that the same uids and gids are
235 .\"O used on the client and the server machine. This is not always true, nor
236 .\"O is it always desirable.
237 ¥µ¡¼¥Ð¥Þ¥·¥ó¾å¤Î¥Õ¥¡¥¤¥ë¤ËÂФ¹¤ë
239 ¤Ë¤è¤ë¥¢¥¯¥»¥¹¥³¥ó¥È¥í¡¼¥ë¤Ï¡¢
240 ¤½¤ì¤¾¤ì¤Î NFS RPC request ¤ÎºÝ¤ËÍ¿¤¨¤é¤ì¤ë uid ¤È gid ¤Ë´ð¤Å¤¤¤Æ¤¤¤ë¡£
241 ¥æ¡¼¥¶¤ÏÄ̾¥µ¡¼¥Ð¾å¤Ë¤¢¤ë¼«Ê¬¤Î¥Õ¥¡¥¤¥ë¤Ë¤Ï¡¢
242 ¤½¤ì¤¬ÉáÄ̤Υե¡¥¤¥ë¥·¥¹¥Æ¥à¾å¤Ë¤¢¤ë¤Î¤ÈƱÍͤË
243 ¥¢¥¯¥»¥¹²Äǽ¤Ç¤¢¤ë¤³¤È¤ò´üÂÔ¤·¤Æ¤¤¤ë¡£
244 ¤³¤ì¤Ë¤Ï¥¯¥é¥¤¥¢¥ó¥È¤È¥µ¡¼¥Ð¾å¤ÇÍѤ¤¤é¤ì¤ë
245 uid ¤È gid ¤¬¤½¤ì¤¾¤ìƱ¤¸¤Ç¤¢¤ëɬÍפ¬¤¢¤ë¤¬¡¢
246 ¤³¤ì¤Ï¾ï¤Ë¿¿¤Ç¤¢¤ë¤È¤Ï¸Â¤é¤º¡¢Ë¾¤Þ¤·¤¤¤È¤â¸Â¤é¤Ê¤¤¡£
248 .\"O Very often, it is not desirable that the root user on a client machine
249 .\"O is also treated as root when accessing files on the NFS server. To this
250 .\"O end, uid 0 is normally mapped to a different id: the so-called
253 .\"O uid. This mode of operation (called `root squashing') is the default,
254 .\"O and can be turned off with
255 .\"O .IR no_root_squash .
256 ¥¯¥é¥¤¥¢¥ó¥È¥Þ¥·¥ó¤Î root ¤¬ NFS ¥µ¡¼¥Ð¤Î¥Õ¥¡¥¤¥ë¤Ë¥¢¥¯¥»¥¹¤¹¤ë¤È¤¡¢
257 ¥µ¡¼¥Ð¤Î root ¤È¤·¤Æ°·¤ï¤ì¤Æ¤·¤Þ¤¦¤Î¤Ï¡¢¤Û¤È¤ó¤É¤Î¾ì¹ç¤Ï˾¤Þ¤·¤¯¤Ê¤¤¡£
258 ¤³¤Î¤¿¤á uid 0 ¤ÏÉáÄ̤ÏÊ̤Πid (anonymous ¤ä
260 uid) ¤Ë¥Þ¥Ã¥Ô¥ó¥°¤µ¤ì¤ë¡£
261 ¤³¤ÎÆ°ºî¤Ï `root squashing' ¤È¸Æ¤Ð¤ì¤ë¤¬¡¢¤³¤ì¤¬¥Ç¥Õ¥©¥ë¥È¤Ç¤¢¤ë¡£
263 ¤ò»È¤¨¤Ð¥ª¥Õ¤Ë¤Ç¤¤ë¡£
267 .\"O tries to obtain the anonymous uid and gid by looking up user
269 .\"O in the password file at startup time. If it isn't found, a uid and gid
270 .\"O of -2 (i.e. 65534) is used. These values can also be overridden by
272 .\"O .IR anonuid " and " anongid
276 ¤Ïµ¯Æ°»þ¤Ë password ¥Õ¥¡¥¤¥ëÃæ¤Î
279 anonymous ¤Î uid ¤È gid ¤òÆÀ¤è¤¦¤È¤¹¤ë¡£
280 ¤â¤·¤½¤ì¤¬¸«¤Ä¤«¤é¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢
281 uid ¤È gid ¤È¤·¤Æ -2 (¤Ä¤Þ¤ê 65534) ¤òÍѤ¤¤ë¡£
283 .IR anonuid " ¤È " anongid
284 ¥ª¥×¥·¥ç¥ó¤Ë¤è¤Ã¤ÆÊѹ¹¤Ç¤¤ë¡£
286 .\"O In addition to this,
288 .\"O lets you specify arbitrary uids and gids that should be mapped to user
289 .\"O nobody as well. Finally, you can map all user requests to the
290 .\"O anonymous uid by specifying the
291 .\"O .IR all_squash " option.
294 ¤Ë¤è¤Ã¤Æ nobody ¤Ë³ä¤êÅö¤Æ¤ë¤Ù¤Å¬Åö¤Ê uid ¤È gid ¤È¤ò»ØÄꤹ¤ë¤³¤È¤â¤Ç¤¤ë¡£
297 ¥ª¥×¥·¥ç¥ó¤ò»ØÄꤹ¤ì¤Ð¡¢
298 Á´¤Æ¤Î user request ¤ò anonymous uid ¤Ë³ä¤êÅö¤Æ¤ë¤³¤È¤â¤Ç¤¤ë¡£
300 .\"O For the benefit of installations where uids differ between different
303 .\"O provides several mechanism to dynamically map server uids to client
304 .\"O uids and vice versa: static mapping files, NIS-based mapping, and
305 .\"O .IR ugidd -based
307 ¥Þ¥·¥ó¤´¤È¤Ë uid ¤¬°Û¤Ê¤ë¤è¤¦¤Ê¾ì¹ç¤Ø¤ÎƳÆþ¤òÍưפˤ¹¤ë¤¿¤á¡¢
309 ¤Ç¤Ï¥µ¡¼¥Ð¤Î uid ¤ò¥¯¥é¥¤¥¢¥ó¥È¤Î uid ¤Ë (¤¢¤ë¤¤¤Ï¤½¤ÎµÕ¤Ë)
310 ưŪ¤Ë¥Þ¥Ã¥Ô¥ó¥°¤¹¤ë¼êË¡¤ò¤¤¤¯¤Ä¤«Ä󶡤·¤Æ¤¤¤ë¡£
311 ÀÅŪ¤Ê¥Þ¥Ã¥Ô¥ó¥°¥Õ¥¡¥¤¥ë¡¢NIS ¥Ù¡¼¥¹¤Î¥Þ¥Ã¥Ô¥ó¥°¡¢
313 ¥Ù¡¼¥¹¤Î¥Þ¥Ã¥Ô¥ó¥°¡¢¤Ç¤¢¤ë¡£
315 .\"O .IR ugidd -based
316 .\"O mapping is enabled with the
318 .\"O option, and uses the UGID RPC protocol. For this to work, you have to run
321 .\"O mapping daemon on the client host. It is the least secure of the three methods,
322 .\"O because by running
324 .\"O everybody can query the client host for a list of valid user names. You
328 ¥ª¥×¥·¥ç¥ó¤ò»ØÄꤷ¤Æ UGID RPC ¥×¥í¥È¥³¥ë¤ò»È¤¨¤Ð²Äǽ¤È¤Ê¤ë¡£
329 ¤³¤Î¥×¥í¥È¥³¥ë¤òÆ°¤«¤¹¤Ë¤Ï¥¯¥é¥¤¥¢¥ó¥È¤Ç
331 mapping ¥Ç¡¼¥â¥ó¤òÆ°ºî¤µ¤»¤ëɬÍפ¬¤¢¤ë¡£
332 ¤³¤ì¤Ï 3 ¤Ä¤¢¤ëÊýË¡¤ÎÃæ¤Ç¡¢¥»¥¥å¥ê¥Æ¥£Åª¤Ë¤ÏºÇ°¤Ç¤¢¤ë¡£
335 ¤òÆ°ºî¤µ¤»¤ë¤È¡¢Ã¯¤Ç¤â¥¯¥é¥¤¥¢¥ó¥È¤ËÌ䤤¹ç¤ï¤»¤Æ¡¢
336 ͸ú¤Ê¥æ¡¼¥¶Ì¾¤Î¥ê¥¹¥È¤òÆþ¼ê¤Ç¤¤Æ¤·¤Þ¤¦¤«¤é¤Ç¤¢¤ë¡£
337 .\"O can protect yourself by restricting access to
339 .\"O to valid hosts only. This can be done by entering the list of valid
344 .\"O file. The service name is
346 .\"O For a description of the file's syntax, please read
347 .\"O .IR hosts_access (5).
349 ¤Ø¤Î¥¢¥¯¥»¥¹¤òÆÃÄê¤Î¥Û¥¹¥È¤Î¤ß¤ËÀ©¸Â¤·¤Æ¡¢¿È¤ò¼é¤ë¤³¤È¤â¤Ç¤¤ë¡£
350 ¤³¤ì¤Ë¤Ïµö²Ä¤¹¤ë¥Û¥¹¥È¤Î¥ê¥¹¥È¤ò
354 ¥Õ¥¡¥¤¥ë¤Ëµ½Ò¤¹¤ì¤Ð¤è¤¤¡£¥µ¡¼¥Ó¥¹Ì¾¤Ï
356 ¤Ç¤¢¤ë¡£¤³¤ì¤é¤Î¥Õ¥¡¥¤¥ë¤Îʸˡ¤Ë¤Ä¤¤¤Æ¤Ï¡¢
360 .\"O Static mapping is enabled by using the
362 .\"O option, which takes a file name as an argument that describes the mapping.
363 .\"O NIS-based mapping queries the client's NIS server to obtain a mapping from
364 .\"O user and group names on the server host to user and group names on the
368 ¥ª¥×¥·¥ç¥ó¤Ë¤è¤Ã¤ÆÆ°ºî¤µ¤»¤ë¤³¤È¤¬¤Ç¤¤ë¡£
369 ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢¥Þ¥Ã¥Ô¥ó¥°¤òµ½Ò¤·¤¿¥Õ¥¡¥¤¥ë¤Î̾Á°¤ò°ú¿ô¤Ë¤È¤ë¡£
370 NIS ¥Ù¡¼¥¹¤Î¥Þ¥Ã¥Ô¥ó¥°¤Ï¡¢¥¯¥é¥¤¥¢¥ó¥È¤Î NIS ¥µ¡¼¥Ð¤ËÌ䤤¹ç¤ï¤»¤Æ¡¢
371 ¥µ¡¼¥Ð¡¼¥Û¥¹¥È¤Ç¤Î¥æ¡¼¥¶Ì¾¤ª¤è¤Ó¥°¥ë¡¼¥×̾¤«¤é
372 ¥¯¥é¥¤¥¢¥ó¥È¤Ç¤Î¥æ¡¼¥¶Ì¾¤ª¤è¤Ó¥°¥ë¡¼¥×̾¤Ø¤Î¡¢
373 ¥Þ¥Ã¥Ô¥ó¥°¾ðÊó¤òÆþ¼ê¤¹¤ë¡£
375 .\"O Here's the complete list of mapping options:
376 °Ê²¼¤Ë¥Þ¥Ã¥Ô¥ó¥°¥ª¥×¥·¥ç¥ó¤Î´°Á´¤Ê¥ê¥¹¥È¤ò¤¢¤²¤ë:
379 .\"O Map requests from uid/gid 0 to the anonymous uid/gid. Note that this does
380 .\"O not apply to any other uids that might be equally sensitive, such as user
382 uid/gid ¤¬ 0 ¤Î¥ê¥¯¥¨¥¹¥È¤ò annonymous uid/gid ¤Ë¥Þ¥Ã¥Ô¥ó¥°¤¹¤ë¡£
383 ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢root °Ê³°¤Î uid ¤Ë¤ÏŬÍѤµ¤ì¤Ê¤¤¡£
384 ¾¤Ë¤âÃí°Õ¤¹¤Ù¤ uid ¤Ï¸ºß¤¹¤ë (Î㤨¤Ð
386 ¤Ê¤É) ¤Î¤Ç¡¢Ãí°Õ¤¹¤ëɬÍפ¬¤¢¤ë¡£
389 .\"O Turn off root squashing. This option is mainly useful for diskless clients.
390 root squashing ¤ò̵¸ú¤Ë¤¹¤ë¡£
391 ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¼ç¤Ë¥Ç¥£¥¹¥¯¥ì¥¹¥¯¥é¥¤¥¢¥ó¥È¤Ë¤È¤Ã¤ÆÊØÍø¤Ç¤¢¤ë¡£
393 .IR squash_uids " and " squash_gids
394 .\"O This option specifies a list of uids or gids that should be subject to
395 .\"O anonymous mapping. A valid list of ids looks like this:
396 ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢annonymous ¤Ë¥Þ¥Ã¥Ô¥ó¥°¤µ¤ì¤ë
397 uid ¤ä gid ¤Î¥ê¥¹¥È¤òÌÀ¼¨¤¹¤ë¤¿¤á¤Î¤â¤Î¤Ç¤¢¤ë¡£
398 id ¤Î¥ê¥¹¥È¤È¤·¤Æ¤Ï°Ê²¼¤Î¤è¤¦¤Ê»ØÄ꤬͸ú¤Ç¤¢¤ë:
400 .IR squash_uids=0-15,20,25-50
402 .\"O Usually, your squash lists will look a lot simpler.
403 Ä̾ï¤Î squash ¥ê¥¹¥È¤Ï¤â¤Ã¤È¤º¤Ã¤È´Êñ¤Ê¤â¤Î¤Ë¤Ê¤ë¤À¤í¤¦¤¬¡£
406 .\"O Map all uids and gids to the anonymous user. Useful for NFS-exported
407 .\"O public FTP directories, news spool directories, etc. The opposite option
409 .\"O .IR no_all_squash ,
410 .\"O which is the default setting.
411 Á´¤Æ¤Î uid ¤Ègid ¤ò anonymous ¤Ë¥Þ¥Ã¥Ô¥ó¥°¤¹¤ë¡£
412 ¤³¤ì¤Ï NFS ¥¨¥¯¥¹¥Ý¡¼¥È¤µ¤ì¤¿¸ø³« FTP ¥Ç¥£¥ì¥¯¥È¥ê¤ä¡¢
413 news ¤Î¥¹¥×¡¼¥ë¥Ç¥£¥ì¥¯¥È¥êÅù¤ËÊØÍø¤Ç¤¢¤ë¡£
414 ¤³¤ì¤ÈµÕ¤Î¥ª¥×¥·¥ç¥ó¤Ï
416 ¤Ç¤¢¤ê¡¢¤³¤Á¤é¤¬¥Ç¥Õ¥©¥ë¥È¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£
419 .\"O This option turns on dynamic uid/gid mapping. Each uid in an NFS request
420 .\"O will be translated to the equivalent server uid, and each uid in an
421 .\"O NFS reply will be mapped the other way round. This option requires that
422 .\"O .IR rpc.ugidd (8)
423 .\"O runs on the client host. The default setting is
424 .\"O .IR map_identity ,
425 .\"O which leaves all uids untouched. The normal squash options apply regardless
426 .\"O of whether dynamic mapping is requested or not.
427 ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï ưŪ¤Ê uid/gid ¤Î¥Þ¥Ã¥Ô¥ó¥°¤ò͸ú¤Ë¤¹¤ë¡£
428 NFS request Ãæ¤Î¤½¤ì¤¾¤ì¤Î uid ¤Ï¥µ¡¼¥Ð¾å¤ÎÂбþ¤¹¤ë uid ¤ËÊÑ´¹¤µ¤ì¡¢
429 NFS reply Ãæ¤Î uid ¤Ï¤½¤ì¤¾¤ìµÕ¤ËÊÑ´¹¤µ¤ì¤ë¡£
430 ¤³¤Î¥ª¥×¥·¥ç¥ó¤òÍѤ¤¤ë¤Ë¤Ï¡¢¥¯¥é¥¤¥¢¥ó¥È¥Û¥¹¥È¤Ç
432 ¤¬Æ°ºî¤·¤Æ¤¤¤ë¤³¤È¤¬É¬ÍפǤ¢¤ë¡£
433 ¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¡¢Á´¤Æ¤Î uid ¤òÊѤ¨¤Ê¤¤
436 ÉáÄ̤Πsquash ¥ª¥×¥·¥ç¥ó¤Ï¡¢
437 ưŪ¤Ê¥Þ¥Ã¥Ô¥ó¥°¤«Èݤ«¤òµ¤¤Ë¤¹¤ë¤³¤È¤Ê¤¯Å¬ÍѤǤ¤ë¡£
440 .\"O This option enables static mapping. It specifies the name of the file
441 .\"O that describes the uid/gid mapping, e.g.
442 ¤³¤Î¥ª¥×¥·¥ç¥ó¤ò»ØÄꤹ¤ë¤ÈÀÅŪ¤Ê¥Þ¥Ã¥Ô¥ó¥°¤¬²Äǽ¤È¤Ê¤ë¡£
443 uid/gid ¥Þ¥Ã¥Ô¥ó¥°¤¬µ½Ò¤µ¤ì¤¿¥Õ¥¡¥¤¥ë̾¤ò°Ê²¼¤Î¤è¤¦¤Ë»ØÄꤹ¤ë¡£
445 .IR map_static=/etc/nfs/foobar.map
447 .\"O The file's format looks like this
448 ¥Õ¥¡¥¤¥ë¤Î¥Õ¥©¡¼¥Þ¥Ã¥È¤Ï°Ê²¼¤Î¤è¤¦¤Ê¤â¤Î¤Ç¤¢¤ë¡£
452 # Mapping for client foobar:
454 uid 0-99 - # squash these
455 uid 100-500 1000 # map 100-500 to 1000-1400
456 gid 0-49 - # squash these
457 gid 50-100 700 # map 50-100 to 700-750
461 .\"O This option enables NIS-based uid/gid mapping. For instance, when
462 .\"O the server encounters the uid 123 on the server, it will obtain the
463 .\"O login name associated with it, and contact the NFS client's NIS server
464 .\"O to obtain the uid the client associates with the name.
465 ¤³¤Î¥ª¥×¥·¥ç¥ó¤ò»ØÄꤹ¤ë¤È NIS ¥Ù¡¼¥¹¤Î uid/gid ¥Þ¥Ã¥Ô¥ó¥°¤¬²Äǽ¤È¤Ê¤ë¡£
466 Î㤨¤Ð¡¢¥µ¡¼¥Ð¤¬ uid 123 ¤Î»ØÄê¤ò¼õ¤±¤ë¤È¡¢
467 ¥µ¡¼¥Ð¤Ï¤Þ¤º¤½¤Î uid ¤ËÂбþ¤¹¤ë¥í¡¼¥«¥ë¤Î¥í¥°¥¤¥ó̾¤òÄ´¤Ù¤ë¡£
468 ¼¡¤Ë NFS ¥¯¥é¥¤¥¢¥ó¥È¤Î NIS ¥µ¡¼¥Ð¤ËÀܳ¤·¤Æ¡¢
469 ¤½¤Î¥í¥°¥¤¥ó̾¤ËÂбþ¤¹¤ë uid ¤ò¼èÆÀ¤¹¤ë¡£
471 .\"O In order to do this, the NFS server must know the client's NIS domain.
472 .\"O This is specified as an argument to the
475 ¤³¤ì¤ò¹Ô¤¦¤Ë¤Ï¡¢NFS ¥µ¡¼¥Ð¤¬¥¯¥é¥¤¥¢¥ó¥È¤Î NIS ¥É¥á¥¤¥ó¤ò
476 ÃΤäƤ¤¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¡£
479 ¥ª¥×¥·¥ç¥ó¤Î°ú¿ô¤È¤·¤Æ°Ê²¼¤Î¤è¤¦¤Ë»ØÄꤹ¤ë¡£
483 .\"O Note that it may not be sufficient to simply specify the NIS domain
484 .\"O here; you may have to take additional actions before
486 .\"O is actually able to contact the server. If your distribution uses
487 .\"O the NYS library, you can specify one or more NIS servers for the
488 .\"O client's domain in
489 .\"O .IR /etc/yp.conf .
490 ¤¿¤À¤³¤³¤Ë NIS ¥É¥á¥¤¥ó¤òµ½Ò¤¹¤ë¤À¤±¤Ç¤Ï¡¢Ä̾ï¤Ï½¼Ê¬¤Ç¤Ï¤Ê¤¤¡£
492 ¤¬ NIS ¥µ¡¼¥Ð¤Ë¥³¥ó¥¿¥¯¥È¤Ç¤¤ë¤è¤¦¤Ë¤¹¤ë¤Ë¤Ï¡¢
493 ¾¤Îºî¶È¤¬É¬ÍפȤʤë¤À¤í¤¦¡£
494 ÍøÍѤ·¤Æ¤¤¤ë¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤¬ NYS ¥é¥¤¥Ö¥é¥ê¤ò»È¤Ã¤Æ¤¤¤ë¾ì¹ç¤Ï¡¢
495 ¥¯¥é¥¤¥¢¥ó¥È¤Î¥É¥á¥¤¥ó¤Î¥µ¡¼¥Ð¤ò
497 ¤Ë°ì¤Ä°Ê¾å»ØÄꤹ¤ëɬÍפ¬¤¢¤ë¤À¤í¤¦¡£
498 .\"O If you are using a different NIS library, you may have to obtain a
501 .\"O daemon that can be configured via
503 ¾¤Î NIS ¥é¥¤¥Ö¥é¥ê¤òÍѤ¤¤Æ¤¤¤ë¾ì¹ç¤Ë¤Ï¡¢
505 ¤Ë¤è¤Ã¤ÆÀßÄê¤Ç¤¤ë¤è¤¦¤Ê¡¢Æüì¤Ê
507 ¤òÆþ¼ê¤¹¤ëɬÍפ¬¤¢¤ë¤«¤â¤·¤ì¤Ê¤¤¡£
509 .\"O .IR anonuid " and " anongid
510 .IR anonuid " ¤ª¤è¤Ó " anongid
511 .\"O These options explicitly set the uid and gid of the anonymous account.
512 .\"O This option is primarily useful for PC/NFS clients, where you might want
513 .\"O all requests appear to be from one user. As an example, consider the
514 .\"O export entry for
516 .\"O in the example section below, which maps all requests to uid 150 (which
517 .\"O is supposedly that of user joe).
518 ¤³¤ì¤é¤Î¥ª¥×¥·¥ç¥ó¤Ï anonymous ¥¢¥«¥¦¥ó¥È¤Î uid ¤È gid ¤òÌÀ¼¨Åª¤Ë¥»¥Ã¥È¤¹¤ë¡£
519 ¤³¤ì¤Ï¡¢Á´¤Æ¤Î¥ê¥¯¥¨¥¹¥È¤¬°ì¿Í¤Î¥æ¡¼¥¶¤«¤é¤Ë¤Ê¤ë¤è¤¦¤Ê
520 PC/NFS clients ¤Ë¤È¤Ã¤Æ¼ç¤Ë͸ú¤Ç¤¢¤ë¡£
521 Î㤨¤Ð¡¢°Ê²¼¤Î¡ÖÎã¡×¤Î¥»¥¯¥·¥ç¥ó¤Ç¤Î
523 ¤È¤¤¤¦¥¨¥¯¥¹¥Ý¡¼¥È¥¨¥ó¥È¥ê¤ò¸«¤Æ¤Û¤·¤¤¡£
524 ¤³¤ÎÎã¤Ç¤Ï¡¢(joe ¤«¤é¤Î¤â¤Î¤Ç¤¢¤ë¤È»×¤ï¤ì¤ë) Á´¤Æ¤Î¥ê¥¯¥¨¥¹¥È¤¬
525 uid 150 ¤Ë¥Þ¥Ã¥Ô¥ó¥°¤µ¤ì¤ë¡£
532 # sample /etc/exports file
533 / master(rw) trusty(rw,no_root_squash)
534 /projects proj*.local.domain(rw)
535 /usr *.local.domain(ro) @trusted(rw)
536 /home/joe pc001(rw,all_squash,anonuid=150,anongid=100)
537 /pub (ro,insecure,all_squash)
538 /pub/private (noaccess)
541 .\"O The first line exports the entire filesystem to machines master and trusty.
542 .\"O In addition to write access, all uid squashing is turned off for host
543 .\"O trusty. The second and third entry show examples for wildcard hostnames
544 .\"O and netgroups (this is the entry `@trusted'). The fourth line shows the
545 .\"O entry for the PC/NFS client discussed above. Line 5 exports the
546 .\"O public FTP directory to every host in the world, executing all requests
547 .\"O under the nobody account. The
549 .\"O option in this entry also allows clients with NFS implementations that
550 .\"O don't use a reserved port for NFS. The last line denies all NFS clients
551 .\"O access to the private directory.
552 1 ¹ÔÌܤϡ¢master ¤È trusty ¤ËÂФ·¤Æ¡¢
553 ¤¹¤Ù¤Æ¤Î¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤Î¥Þ¥¦¥ó¥Èµö²Ä¤ò½Ð¤·¤Æ¤¤¤ë¡£
554 ½ñ¤¹þ¤ß¤Îµö²Ä¤Ë²Ã¤¨¡¢¤µ¤é¤Ë trusty ¤ËÂФ·¤Æ¤Ï¡¢
555 ¤¹¤Ù¤Æ¤Î uid squashing ¤â̵¸ú¤Ë¤·¤Æ¤¤¤ë¡£
556 2 ¹ÔÌÜ¤È 3 ¹ÔÌܤϡ¢¥Û¥¹¥È̾¤Ø¤Î¥ï¥¤¥ë¥É¥«¡¼¥É¤ÎÍøÍѤȡ¢
557 ¥Í¥Ã¥È¥°¥ë¡¼¥× (@trusted' ¤Î¥¨¥ó¥È¥ê) ¤ÎÎã¤Ç¤¢¤ë¡£
558 4 ¹ÔÌܤϡ¢¾å¤Ç½Ò¤Ù¤¿ PC/NFS ¥¯¥é¥¤¥¢¥ó¥ÈÍÑ¥¨¥ó¥È¥ê¤ÎÎã¤Ç¤¢¤ë¡£
559 5 ¹ÔÌܤϡ¢¸ø³« FTP ¥Ç¥£¥ì¥¯¥È¥ê¤òÀ¤³¦Ãæ¤ÎÁ´¤Æ¤Î¥Û¥¹¥È¤Ë¥¨¥¯¥¹¥Ý¡¼¥È¤·¤Æ¤¤¤ë¡£
560 ¤¹¤Ù¤Æ¤Î¥ê¥¯¥¨¥¹¥È¤Ï nobody ¥¢¥«¥¦¥ó¥È¤Ç¼Â¹Ô¤µ¤ì¤ë¡£
563 ¥ª¥×¥·¥ç¥ó¤Ë¤è¤Ã¤Æ¡¢NFS ÍÑ port ¤ò»È¤ï¤Ê¤¤¤è¤¦¤Ë¼ÂÁõ¤µ¤ì¤¿ NFS
564 ¥¯¥é¥¤¥¢¥ó¥È¤«¤é¤Î¥¢¥¯¥»¥¹¤âµö²Ä¤·¤Æ¤¤¤ë¡£
565 ºÇ¸å¤Î¹Ô¤Ç¤Ï¡¢private ¥Ç¥£¥ì¥¯¥È¥ê¤Ø¤Î¥¢¥¯¥»¥¹¤ò¤¹¤Ù¤Æ¤Î
566 ¥¯¥é¥¤¥¢¥ó¥È¤ËÂФ·¤ÆµñÈݤ¹¤ë¤è¤¦¤Ë¤·¤Æ¤¤¤ë¡£
569 .\"O Unlike other NFS server implementations, this
571 .\"O allows you to export both a directory and a subdirectory thereof to
572 .\"O the same host, for instance
573 .\"O .IR /usr " and " /usr/X11R6 .
574 ¾¤Î NFS Server ¤Î¼ÂÁõ¤È°ã¤¤¡¢
578 .IR /usr " ¤È " /usr/X11R6
579 ¤Î¤è¤¦¤Ë¡¢¤¢¤ë¥Ç¥£¥ì¥¯¥È¥ê¤È¤½¤Î¥µ¥Ö¥Ç¥£¥ì¥¯¥È¥ê¤È¤ÎξÊý¤ò
580 Ʊ¤¸¥Û¥¹¥È¤Ë¥¨¥¯¥¹¥Ý¡¼¥È¤¹¤ë¤³¤È¤¬¤Ç¤¤ë¡£
581 .\"O In this case, the mount options of the most specific entry apply. For
582 .\"O instance, when a user on the client host accesses a file in
583 .\"O .IR /usr/X11R6 ,
584 .\"O the mount options given in the
586 .\"O entry apply. This is also true when the latter is a wildcard or netgroup
588 ¤³¤Î¾ì¹ç¡¢ÆÃÄê¤ÎÅٹ礬¤â¤Ã¤È¤â¹â¤¤¥¨¥ó¥È¥ê¤Î¥Þ¥¦¥ó¥È¥ª¥×¥·¥ç¥ó¤¬Å¬ÍѤµ¤ì¤ë¡£
589 Î㤨¤Ð¥¯¥é¥¤¥¢¥ó¥È¥Û¥¹¥È¾å¤Î¥æ¡¼¥¶¤¬
591 ¤Î¥Õ¥¡¥¤¥ë¤Ë¥¢¥¯¥»¥¹¤¹¤ë¾ì¹ç¤Ï¡¢
593 ¤Î¥¨¥ó¥È¥ê¤Ç¤¢¤¿¤¨¤é¤ì¤¿ ¥Þ¥¦¥ó¥È¥ª¥×¥·¥ç¥ó¤¬Å¬ÍѤµ¤ì¤ë¡£
594 ¤³¤Î¥ë¡¼¥ë¤Ï¡¢¥¨¥ó¥È¥ê¤Î¥Û¥¹¥È»ØÄ꤬
595 ¥ï¥¤¥ë¥É¥«¡¼¥É¤ä¥Í¥Ã¥È¥°¥ë¡¼¥×¤Î¤È¤¤Ë¤âŬÍѤµ¤ì¤ë¡£
601 .\"O An error parsing the file is reported using syslogd(8) as level NOTICE from
602 .\"O a DAEMON whenever nfsd(8) or mountd(8) is started up. Any unknown
603 .\"O host is reported at that time, but often not all hosts are not yet known
604 .\"O to named(8) at boot time, thus as hosts are found they are reported
605 .\"O with the same syslogd(8) parameters.
610 ¥Õ¥¡¥¤¥ë¤Î²ò¼áÃæ¤Î¥¨¥é¡¼¤Ï¾ï¤Ë
613 DAEMON ¤«¤é¤Î NOTICE ¥ì¥Ù¥ë¤È¤Ê¤ë¡£
614 ¤½¤Î¤È¤¡¢Ì¤ÃΤΥۥ¹¥ÈÁ´¤Æ¤¬Êó¹ð¤µ¤ì¤ë¡£
617 ¤¬Á´¤Æ¤Î¥Û¥¹¥È¤òÃΤé¤Ê¤¤¾ì¹ç¤â¤¢¤ê¤¦¤ë¡£
618 ¤·¤¿¤¬¤Ã¤Æ¥Û¥¹¥È¤¬¸«¤Ä¤«¤ë¤¿¤Ó¤Ë¡¢¤½¤ì¤é¤Ï
620 ¤Ë¡¢Æ±¤¸¥Ñ¥é¥á¡¼¥¿¤ÇÊó¹ð¤µ¤ì¤ë¡£