z/OS Network File System Guide and Reference
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Exports list checking–security(exports)

z/OS Network File System Guide and Reference
SC23-6883-00

When you specify security(exports) in the attributes data set, the NFS server checks the client IP address against the exports list, which is generated from the exports data set, to determine whether or not a mount is to be granted. The NFS server also checks the requested directory (or high-level qualifier) to be mounted. For z/OS UNIX data, it also checks the UNIX permission bits before granting file access to a client user. See Figure 1 and Table 1 for information on permission checking.
Note: If UID or GID from the RPC request is zero, it will be mapped to 65534 (nobody) before the UNIX permission is performed.
Figure 1. Permission checking for the security(exports) attribute
Permission checking for the security(exports) attribute

For more information about the exports data set, see Exports data set.

Parent topic: Protecting the file system on z/OS with the Security site attribute

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014