0
My goal is to create several network shares, one for each user on the network. The objective is to replace an internal HDD with an SSD, and move the home directories (or maybe just documents, etc. individually, since home folders can get a little hairy) to a server on the network.
My proposed solution is to serve files using SFTP, and mount them using SSHFS (I also believe SSHFS will allow remote access, which is a bonus). Each user will get a user account on the server. These accounts allow the users to log into the server, and file permissions on the server can restrict access to directories owned by that user on the server. The problem I foresee is this: If the local user's uid is 1001 and the server user's uid is 1002, then local user will not have read/write permission on the network drive (unless r/w permission is given to everyone, which means the shares are no longer private). But the local user accounts are already created, so there is no way to ensure uid's match between server and local accounts.
How do I do this?
Mithrandir
Posted 2012-07-16T17:45:52.080
Reputation: 1
What's wrong with iSCSI? Or even NFS? – Michael Hampton – 2012-07-16T17:51:44.370
It was my understanding that NFS doesn't allow the same user-based security options that SSHFS does. However, iSCSI seems like an attractive solution. I'll look into it. – Mithrandir – 2012-07-16T18:08:05.253
For anyone still looking to solve this problem using SFTP, SSHFS in the FUSE implementation will mount with local access only given to the user who ran the sshfs program. Using the idmap option will translate the remote user to the local user, so that permission given on the server to the remote user is permission given locally to the local user.
– Mithrandir – 2012-07-17T17:59:04.163