Re: Machine authentication

From: bugtraq@seifried.org
Date: 12/18/01


Date: Mon, 17 Dec 2001 17:23:07 -0700 (MST)
From: <bugtraq@seifried.org>
To: James Craig <jmc@cs.rit.edu>


> We are looking for a way to authenticate machines such that when
> a machine asks for an NFS mount, the server can trust it is that
> machine. I believe NIS+ can provide this, but how about kerberos,
> or DES? How would one set this up in a Solaris 8 environment?

IPSEC is another way to do this, you can do auth via passwords, X.509,
PGP, etc. Only allow NFS via the IPSEC, if the client authenticates to
IPSEC properly, voila.

> jim crag

-Kurt