Re: [LUG] NFS not secure.

To: list@xxxxxxxxxxxx
Subject: Re: [LUG] NFS not secure.
From: Kai Hendry <hendry@xxxxxxxxxxxxxx>
Date: Mon, 15 Mar 2004 14:40:28 +0200
Content-disposition: inline
Reply-to: list@xxxxxxxxxxxx

On Mon, Mar 15, 2004 at 12:26:30PM +0000, Andrew Rogers wrote:

The problem is that a client machine could be swapped for a machine with 
matching UIDs. Just unplug a client from the network at put it its place 
a laptop which the perpetrator would have root access to. Or even more 
simple, reboot a client with a Live distro CD (assuming the clients have 
a CDROM drive).


The way it works at school is that machines like personal laptops do not
have access to fs via NFS.

Trusted machines which have their BIOS protected etc. do have access to
NFS.

UIDs are maintained by LDAP.

This works, otherwise you're left looking for a "hairy" solution which
will probably cause mass breakage.

--
The Mailing List for the Devon & Cornwall LUG
Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the
message body to unsubscribe.

Re: [LUG] NFS not secure.
- From: Simon Waters

References:
- [LUG] NFS not secure.
  - From: Andrew Rogers
- Re: [LUG] NFS not secure.
  - From: Kai Hendry
- Re: [LUG] NFS not secure.
  - From: Andrew Rogers

Prev by Date: Re: [LUG] NFS not secure.
Next by Date: Re: [LUG] NFS not secure.
Previous by thread: Re: [LUG] NFS not secure.
Next by thread: Re: [LUG] NFS not secure.
Index(es):
- Date
- Thread

Lynx friendly