RE: tcpwrapped rpcbind/portmap?
From: Geoff Collis (geoff@andale.com)Date: 08/17/01
- Previous message: Reg Quinton: "Re: tcpwrapped rpcbind/portmap?"
- Maybe in reply to: Geoff Collis: "tcpwrapped rpcbind/portmap?"
- Next in thread: Casper Dik: "Re: tcpwrapped rpcbind/portmap?"
- Reply: Casper Dik: "Re: tcpwrapped rpcbind/portmap?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <EC5DB45B78F8D311A12500500488E66107E68F93@mail.vendorhub.com> From: Geoff Collis <geoff@andale.com> To: "'Reg Quinton'" <reggers@ist.uwaterloo.ca>, "'focus-sun@securityfocus.com'" <focus-sun@securityfocus.com> Subject: RE: tcpwrapped rpcbind/portmap? Date: Fri, 17 Aug 2001 11:59:21 -0700
Reg
Thanks this helps...
I *should* only need to mount the NetApps via /etc/vfstab, but you know what
happens to the best of plans! :-)
I suspect I may need to run statd/lockd because these file systems are
mounted read/write on many systems... but a little experimentation is in
order I think.
I was hoping to get comments from Casper, or Wietse on this but so far none.
So far I have had only two other responses, one saying yes it works fine
provided you use gcc-2.95.2 or later, and one saying it does not work
reliably at all!
- Geoff
-----Original Message-----
From: Reg Quinton [mailto:reggers@ist.uwaterloo.ca]
Sent: Friday, August 17, 2001 11:42 AM
To: Geoff Collis; focus-sun@securityfocus.com
Subject: Re: tcpwrapped rpcbind/portmap?
> I believe I need "rpcbind" to allow my secured host to NFS mount the NFS
> shares on my Network Appliance file servers.
You do not need to run rpcbind or any RPC services to be an NFS client. You
need to run a wack of RPC services if you're an NFS server. To prove that
I just killed off rpcbind on my Solaris 8 desktop and was still able to
succesfully
do an NFS mount of one of our NetApps. I have rpcbind running but the only
service it offers up is the legato client (required to backup my machine).
If you're after *other* NFS related services (like NFS file locks,
automounter,
etc.) then you may need some RPC services. But an NFS client does not need
rpcbind or any other local RPC services.
See the discussion at http://ist.uwaterloo.ca/security/howto/2000-09-19/
and http://ist.uwaterloo.ca/security/howto/1999-06-23.html
I hope this helps.
- Previous message: Reg Quinton: "Re: tcpwrapped rpcbind/portmap?"
- Maybe in reply to: Geoff Collis: "tcpwrapped rpcbind/portmap?"
- Next in thread: Casper Dik: "Re: tcpwrapped rpcbind/portmap?"
- Reply: Casper Dik: "Re: tcpwrapped rpcbind/portmap?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
