Re: Is there any encrypted or secure NFS?

To: Mark Roach <mrroach@okmaybe.com>
Cc: debian-user@lists.debian.org
Subject: Re: Is there any encrypted or secure NFS?
From: Rohit Kumar Mehta <rohitm@engr.uconn.edu>
Date: Tue, 06 Jan 2004 08:07:38 -0500
Message-id: <[🔎] 3FFAB31A.3090104@engr.uconn.edu>
References: <[🔎] Pine.LNX.3.96.1040105183559.21176A-100000@Maggie.Linux-Consulting.com> <[🔎] 1073361849.17136.139.camel@flmrroach.okmaybe.com>

Mark Roach wrote:

Note: if you tell me that he is going to boot off a knoppix CD and crack
root on the box to su to userB, you must give me at least one example of
an alternative that is not susceptible to an attack by a malicious local
root

Andrew Filesystem (this very hard to set up and demands a kerberosinfrastructure)

and NFSv4(unfortunately not prime time)

Linux Enhanced SMBFS http://uranus.it.swin.edu.au/~jn/linux/smbfs/
This is really great, and easy to user with Debian's automounter.

This is not 100% security. If I get root on the box, I can swipe yourpassword by sniffingyour keystrokes even. But it is pretty good. If user B never logs intoa client machine, user A

will not have access to user B's files from the SMBFS server.

I read another solution on bugtraq where they implemented NFS via sshtunnels, and it seems likea pretty good solution but I have not implemented ithttp://ww.math.ualberta.ca/imaging/snfs/

Reply to:

References:
- Re: Is there any encrypted or secure NFS?
  - From: Alvin Oga <aoga@ns.Linux-Consulting.com>
- Re: Is there any encrypted or secure NFS?
  - From: Mark Roach <mrroach@okmaybe.com>

Prev by Date: Back up and running
Next by Date: Re: linux bewbie lame question
Previous by thread: Re: Is there any encrypted or secure NFS?
Next by thread: Re: Is there any encrypted or secure NFS?
Index(es):
- Date
- Thread