[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: RH Taroon Beta Open Ports

From: Paul Jakma <paul dishone st>
To: rhl-devel-list <rhl-devel-list redhat com>
Subject: Re: RH Taroon Beta Open Ports
Date: Tue, 26 Aug 2003 04:24:35 +0100 (IST)

On Mon, 25 Aug 2003, Felipe Alfaro Solana wrote:

> favor. NFS is not very secure by nature (except NFSv4).

hmm... just to but in, but the above is a common myth:

- whatever security problems NFS has, they are /not/ the fault of the
NFS

- connection authorisation/transport security are /not/ within the 
remit of NFS, it is the /RPC/ layer which is responsible.

- NFSv4 is /not/ more secure than NFSv3. However, NFSv4 makes secure 
RPC mechanisms mandatory. NB: NFSv3 will (should) be able to avail of 
this too.

anyway, blame RPC and the lack of secure RPC mechs in glibc/linux - 
not NFS, if authunix is the only mech available, then authunix is 
all NFS can make use of.

regards,
-- 
Paul Jakma	paul clubi ie	paul jakma org	Key ID: 64A2FF6A
	warning: do not ever send email to spam dishone st
Fortune:
There's no easy quick way out, we're gonna have to live through our
whole lives, win, lose, or draw.
		-- Walt Kelly

References:
- Re: RH Taroon Beta Open Ports
  - From: Felipe Alfaro Solana

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]