NFS and security

To: debian-user@lists.debian.org
Subject: NFS and security
From: Raffaele Sandrini <rasa@gmx.ch>
Date: Fri, 28 Jun 2002 17:51:23 +0200
Message-id: <[🔎] 200206281751.23351.rasa@gmx.ch>

Hi

I recently set up a very little debian system wich i use fo maintaince and 
setup on my clients. Its loaded via the NFSROOT feature of the 2.4 kernel. To 
do that i needed to set up a exports entry like:

/path/to/system	10.1.1.0/24(rw,no_root_squash)

As you can see this is _very_ insecure cause everyone can conntect and alter 
it who is in my network and has a machine on wich his root.
Ok to make it secure i could only let the machines access on wich would like 
to start the system at the moment but its annoying to alter the exports file 
everytime...
Is there a way to make that secure by still using NFS? (not initrd or similar 
things)

cheers,
Raffaele
-- 
Raffaele Sandrini <rasa@gmx.ch>
Annoyed about M$ Windows? Don't worry. Try Linux! (www.linux.org)
For encrypted Mail get my Public Key from "search.keyserver.net"
ID: 0xEC4950E9


-- 
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: NFS and security
  - From: bob@proulx.com (Bob Proulx)
- Re: NFS and security
  - From: Alvin Oga <aoga@Maggie.Linux-Consulting.com>
- Re: NFS and security
  - From: "Benjamin Roe" <ben@benroe.com>
- Re: NFS and security
  - From: "nate" <debian-user@aphroland.org>

Prev by Date: Re: ipchains: drop a single IP address?
Next by Date: Re: Which window manager to use?
Previous by thread: using snips or other monitoring software
Next by thread: Re: NFS and security
Index(es):
- Date
- Thread