Katello fstab mount options

Problem: We keep experiencing odd issues in our setup. I’m wondering if it might be related to the mount options in the fstab file for each of the logical volumes? On all of the foreman/katello related mounts, we have defaults,nosuid,nodev. I just want to check and see if that might be causing any problems?

Expected outcome: Things work. :slight_smile:

Foreman and Proxy versions: foreman 2.4 & katello 4.0; puppet 6

Foreman and Proxy plugin versions:

Distribution and version: CentOS 7.9

Other relevant data:

Nosuid and noexec are known to cause various issues, we do not test with these flags. Puppet server hates noexec on /tmp. Remote Execution have similar issues as well.

Security makes us add a lot of mount options. Is there a document for katello that talks about the mount options? I could use that to tell them we need certain options for certain partitions in order to make it work. I have separate partitions for:

/ xfs
/boot ext4
/boot/efi vfat
/home xfs
/tmp xfs
/var xfs
/var/cache/pulp xfs
/var/lib/mongodb xfs
/var/lib/pgsql xfs
/var/lib/pulp xfs
/var/log xfs
/var/log/audit xfs
/var/spool/squid xfs
swap swap


Having /var/cache/pulp and /var/lib/pulp on separate partitions was a bad idea with Pulp 2 since it meant that you actually copied files which meant a lot of additional IO. With Pulp 3 /var/cache/pulp is no longer used. Since you’re on Katello 4, there isn’t really a point to having that partition.

Another thing to note is that on EL7 /var/lib/pgsql is no longer used but rather /var/opt/rh/rh-postgresql12/lib/pgsql (since we’re using the SCL to get a newer version).

These are really irrelevant for your actual problem, but things I noted.

This is really vague. If you can be specific, we may be able to tell you if it really is a problem.

1 Like