Date: Sun, 3 Jun 2001 00:36:21 -0800 From: Beech Rintoul <akbeech@anchoragerescue.org> To: Mark C Ballew <ballew@cs.unr.edu>, freebsd-questions@freebsd.org Subject: Re: NFS security/setup Message-ID: <01060300362102.19980@galaxy.anchoragerescue.org> In-Reply-To: <20010602235244.A1890@frink.cs.unr.edu> References: <20010602235244.A1890@frink.cs.unr.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Saturday 02 June 2001 22:52, Mark C Ballew wrote: > I am setting up NFS/NIS using FreeBSD/i386 4.3 in order to share accounts > and files with machines on a heterogenus network (IRIX, Linux, Solaris). > In order to limit access to who can mount NFS disks, what do I need to set? > > I am thinking that I just need to set "portmap: 192.168.1." in my > /etc/hosts.allow, and add a similar line to /var/yp/securenets. Is this > correct? > > Also, lets say that I set portmap like above, can anyone on the network > mount the NFS drive and then proceed to create fake UID's in order to r/w > access a user's files? I am running on an academic network, so it is quite > possible for someone to bring up a machine without my knowledge. > > Thank you, Actually the directories and permissions for mounting NFS are set in /etc/exports on the host machine. See man exports for details. Beech -- ------------------------------------------------------------------- Beech Rintoul - IT Manager - Instructor - akbeech@anchoragerescue.org /"\ ASCII Ribbon Campaign | Anchorage Gospel Rescue Mission \ / - NO HTML/RTF in e-mail | P.O. Box 230510 X - NO Word docs in e-mail | Anchorage, AK 99523-0510 / \ ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01060300362102.19980>