Re: Access control for a NFS server
From: Ben Nelson (lists_at_venom600.org)
Date: 07/20/04
- Previous message: Jacob Bresciani: "Re: Access control for a NFS server"
- In reply to: Tobias Edler: "Access control for a NFS server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 20 Jul 2004 09:49:51 -0600 To: Tobias Edler <tobias.edler@physik.uni-goettingen.de>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Tobias Edler wrote:
| Hi !
| As i read a lot of competent postings on this list, maybe one of you can
| adwise me on this qustion.
|
| How can i make sure nobody unplugs a worstation, plugs in a laptop, uses
| the workstation's MAC, mounts /home from the nfs server, and does evil
| things to the homedirs ?
| Like, verify some hostkey or something ?
|
| Regards, Tobias
|
One option might be to require users to establish a VPN connection to
the NFS server in order to access the NFS shares. This would require
authentication and has the added benefit of encryption. Check out
Openswan (www.openswan.org) for a Linux VPN end-point.
- --Ben
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFA/T8f3cL8qXKvzcwRAkIWAJ9Az+8L6cB1WOFwRDkRRgvLKYZPiACdHIB6
ZwI6mTDDZJ6xWKaRPouCXTw=
=M9+Q
-----END PGP SIGNATURE-----
- Previous message: Jacob Bresciani: "Re: Access control for a NFS server"
- In reply to: Tobias Edler: "Access control for a NFS server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
