From 35ace2f172bd15bd239434f2e52b2645cb9499b9 Mon Sep 17 00:00:00 2001 From: Haak Saxberg Date: Thu, 11 Aug 2022 15:53:04 -0700 Subject: [PATCH] stupid mistake --- nix/deployments/nixops.nix | 4 ++-- nix/system/svalbard/README.md | 4 ++++ 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/nix/deployments/nixops.nix b/nix/deployments/nixops.nix index 64139d4..3a4ec72 100644 --- a/nix/deployments/nixops.nix +++ b/nix/deployments/nixops.nix @@ -77,8 +77,8 @@ in services.nfs.server.enable = true; services.nfs.server.exports = '' - /export 192.168.1.0/24(insecure,crossmnt,no_subtree_check,fsid=0) - /export/storage 192.168.1.0/24(rw,sync,nohide,insecure) + /export 192.168.1.0/24(insecure,rw,sync,crossmnt,no_subtree_check,fsid=0) + /export/storage 192.168.1.0/24(rw,sync,nohide,no_subtree_check,insecure) ''; networking.firewall = { diff --git a/nix/system/svalbard/README.md b/nix/system/svalbard/README.md index 8719712..e6cbc14 100644 --- a/nix/system/svalbard/README.md +++ b/nix/system/svalbard/README.md @@ -13,3 +13,7 @@ then added the ZFS filesystem to `hardware-configuration.nix` (use the zfs created label as the device) and rebooted. Don't forget to `chown` the mounted system so that non-root can read/write there. + + +If your NFS clients are able to mount the store but can't `ls` it or see any +conents, make sure that the store is still, in fact, readable to non-owners!!!