Re: nfsd lacks support for tcp_wrapper
From: Alfred Perlstein (bright@wintelcom.net)
Date: 01/31/01
- Next message: Garrett Wollman: "nfsd lacks support for tcp_wrapper"
- Previous message: Gerald Pfeifer: "nfsd lacks support for tcp_wrapper"
- In reply to: Gerald Pfeifer: "nfsd lacks support for tcp_wrapper"
- Next in thread: Garrett Wollman: "nfsd lacks support for tcp_wrapper"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 30 Jan 2001 17:26:18 -0800 From: Alfred Perlstein <bright@wintelcom.net> To: Gerald Pfeifer <pfeifer@dbai.tuwien.ac.at>
* Gerald Pfeifer <pfeifer@dbai.tuwien.ac.at> [010130 17:10] wrote:
> Unless we completely missed something, nfsd does lack support for
> tcp_wrapper, doesn't it?
>
> As NFS is a rather critical security-wize this seems like a big omission.
>
> (Many sites, like ours, just cannot avoid using NFS, so it would be nice
> to be able to easily restrict the address range clients are allowed to
> connect from.)
>
> Or are we just missing something?
Missing the fact that nfsd is an in-kernel process and therefore
pretty hard to link against libwrap. Otherwise... i dunno, use
ipfw? :)
-- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
- Next message: Garrett Wollman: "nfsd lacks support for tcp_wrapper"
- Previous message: Gerald Pfeifer: "nfsd lacks support for tcp_wrapper"
- In reply to: Gerald Pfeifer: "nfsd lacks support for tcp_wrapper"
- Next in thread: Garrett Wollman: "nfsd lacks support for tcp_wrapper"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
