Re: Is NFS export r/o safe from lan to dmz?

To: debian-user@lists.debian.org
Subject: Re: Is NFS export r/o safe from lan to dmz?
From: "Peter Teunissen" <oneman@onemanifest.net>
Date: Tue, 4 Mar 2008 08:32:50 +0100 (CET)
Message-id: <[🔎] 44002.213.194.32.13.1204615970.squirrel@secure.onemanifest.net>
In-reply-to: <[🔎] 20080303200034.GJ26792@ibook99>
References: <[🔎] 20080303170332.GD6458@titan.hooton> <[🔎] 20080303200034.GJ26792@ibook99>

On Mon, March 3, 2008 21:00, NN_il_Confusionario wrote:
> On Mon, Mar 03, 2008 at 12:03:32PM -0500, Douglas A. Tutty wrote:
>> Wouldn't a chrooted ftp server do the same thing?
>
> ftp is a intrinsecally more complex protocol than http (see the problems
> for firewalls with active/passive ftp...
>
> Moreover, the security history of ftp daemons is worse than the security
> history of http daemons (and it is possibly even worse than the security
> history of portmap/nfsd)
>

Neither ftp not minimalistic http would work in this case. Ftp is to
unsafe and minimal http wouldn't be sufficient for the streaming scripts /
mods.

I think rsync would be the only viable option. I'll go shopping for some
diskspace...

Thanks for all the replies.

Peter

Reply to:

Follow-Ups:
- Re: Is NFS export r/o safe from lan to dmz?
  - From: "Douglas A. Tutty" <dtutty@porchlight.ca>

References:
- Re: Is NFS export r/o safe from lan to dmz?
  - From: "Douglas A. Tutty" <dtutty@porchlight.ca>
- Re: Is NFS export r/o safe from lan to dmz?
  - From: NN_il_Confusionario <pinkof.pallus@tiscalinet.it>

Prev by Date: Re: vertical scroll on my touchpad not working
Next by Date: Re: ATI Radeon X1400 + Debian Etch + Compiz Fusion = White Screen
Previous by thread: Re: Is NFS export r/o safe from lan to dmz?
Next by thread: Re: Is NFS export r/o safe from lan to dmz?
Index(es):
- Date
- Thread