Hugh Macdonald wrote: > http://superuser.com/questions/117582/osx-user-home-directories-shared-via-nfs > Last login: Mon Mar 8 18:17:52 on ttys011 > [nv001:~] hugh% ls -al /mount/company_users > total 40 > drwxrwxrwx 26 hugh wheel 840 27 Jan 19:09 . > drwxr-xr-x 6 admin admin 204 19 Dec 18:36 .. > drwx------+ 128 hugh staff 4308 27 Feb 23:36 hugh > drwx------+ 26 matt staff 840 4 Dec 14:14 matt > [nv001:~] hugh%

[nv001:~] hugh% su matt Password: tcsh: Permission denied tcsh: Trying to start from "/mount/company_users/matt" tcsh: Trying to start from "/" [nv001:/] matt%

It's interesting that /mount/company_users is owned by hugh/wheel.
Maybe that should be root/wheel so that hugh can't do weird things
to the top level dir.Also, I'd check the mounts; in particular the mount point's perms;
Possibly only hugh can access the mount point, and thus even if
the perms on the dirs below it are open, other users can't descend
into the mount point due to its perms. Check the perms on /mount
and see if they're rwxr-xr-x and owned by root/wheel. If not, try
unmounting the drive, fixing the perms on the mount dir, then remounting.Also: I'd check is to be sure the mounts really /are/ NFS,
and not one of the 'single user' file systems like AFP or SMB.
The behavior you're describing (works only for the logged in user)
sounds similar to the behavior of AFP/SMB, where the ls reports
will not really show valid info regarding perm access.There's also that little '+' sign at the end of the perms in
your 'ls -la' report, so if it's not one of the above, look
more closely at the ACLs on the dir by adding the -e flag of ls, eg:

ls -lae /mount/company_users

-@ will show 'extended attributes' (see setxattr(2))
-e will show ACLs (see chmod(1) ACL's)It's possible that the ACLs when taken together with the unix perms
are creating a perm problem for the user. The man page on 'chmod'
goes into great detail of ACLs. Thing is, it's not clear to me
why the 'logged in user' should cause special behavior of ACLs
under NFS.ACLs used to be off by default in the older revs of the OS,
but now they're on, and hard to turn off system wide, because
apparently fsaclctl(1) is MIA in Snow Leopard. (Some folks have
taken to copying the binary from Leopard..!) Old man page is here:
http://developer.apple.com/mac/library/documentation/Darwin/Reference/ManPages/10.5/man1/fsaclctl.1.html
You can remove ACLs recusively with 'chmod -RN <dirname>' if you
think they're causing you trouble. Do some tests first by creating
a new dummy user, and test with that.