Go to main content

Managing Network File Systems in Oracle® Solaris 11.4

Exit Print View

Updated: August 2021

Autofs Security Restrictions

The –nosuid option prevents users from creating files with the setuid or setgid bit set.

This entry overrides the entry for /home in a generic local /etc/auto_master file. For information about the generic local /etc/auto_masterfile, see Setting Up a Common View of /home. The override happens because the +auto_master reference to the external name service map occurs before the /home entry in the file. If the entries in the auto_home map include mount options, the –nosuid option is overwritten. Therefore, either no options should be used in the auto_home map or the –nosuid option must be included with each entry.

Note -  Do not mount the home directory disk partitions on or under /home on the server.

How to Apply Autofs Security Restrictions

  1. Become an administrator.

    For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.4.

  2. Create a -nosuid entry in the name service auto_master file.
    /home     auto_home     -nosuid