Re: NFS Mount .... Permission Deny

To: "Alexander B. Cheng" <kingsmen@shaw.ca>
Cc: "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Subject: Re: NFS Mount .... Permission Deny
From: Alvin Oga <aoga@ns.Linux-Consulting.com>
Date: Sat, 3 Jan 2004 16:55:14 -0800 (PST)
Message-id: <[🔎] Pine.LNX.3.96.1040103164715.20104B-100000@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] 20040103163002.081d13ed.kingsmen@shaw.ca>

hi ya alexander

On Sat, 3 Jan 2004, Alexander B. Cheng wrote:

> I'm getting permission deny by server when I try to mount NFS on a
> client machine.
> 
> my /etc/exports is 
> 
> /home/kingsmen 192.168.10.0/24(rw)
> 
> my /etc/hosts.allow is
> 
> ALL:192.168.10.10

explicity define only what you really want ... not allow the world
to hack your boxes

	#
	# some silly apps like netmask explicitly defined
	#
	# portmap:	192.168.10.0/255.255.255.0
	portmap:	192.168.10.0
	#
	mountd:		192.168.10.0
 	...
	
> and my /etc/hosts.deny is
> 
> portmap:ALL

change /etc/hosts.deny to only have "one line" ...

	ALL:ALL


restart portmapper and nfs servers on the remote host and 
restart the nfs clients on the local pc

test it with...

	remote-host#  rpcinfo -p
		portmapper
		mountd
		nfs	

	localpc#  rpcinfo -p remote-host
		-- same list as above

	localpc# mount remote-host:/home/kingsmen /mnt/kingsmen

	and use scp to do any file moving around..

	if you remotely vi those files.. than you're assuming
	nobody is sniffing that nfs traffic
		( NFS -> Not For Security )

c ya
alvin

Reply to:

References:
- NFS Mount .... Permission Deny
  - From: "Alexander B. Cheng" <kingsmen@shaw.ca>

Prev by Date: Re: Is there any encrypted or secure NFS? - encrypted fs
Next by Date: Re: locales and coding systems
Previous by thread: NFS Mount .... Permission Deny
Next by thread: Setting up a mail server
Index(es):
- Date
- Thread