stale auxiliary GID on NFSv3 client allows files to be modified

Solution Verified - Updated -

Issue

  • NFSv3 mount on the client with files read-writeable by a specific group.
  • When the common GID is removed from a user and it should no longer should have read-write ability on a file/directory it had access to previously, that user is still able to modify the file.

Environment

  • Red Hat Enterprise Linux (RHEL) 5, 6
  • NFSv3 mount with group writeable directories.
  • only local UID/GIDs are bring used from /etc/passwd, /etc/group.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content