Date: Tue, 20 Oct 2020 16:23:08 +0200 From: Peter Eriksson <pen@lysator.liu.se> To: Rick Macklem <rmacklem@uoguelph.ca> Cc: "freebsd-current@FreeBSD.org" <freebsd-current@FreeBSD.org> Subject: Re: review of new mountd option disabling use of rpcbind Message-ID: <7F127C98-8E05-45D7-A652-C29D656B4B56@lysator.liu.se> In-Reply-To: <YTBPR01MB3966935BC7208D065C7EF0F9DD1F0@YTBPR01MB3966.CANPRD01.PROD.OUTLOOK.COM> References: <YTBPR01MB3966935BC7208D065C7EF0F9DD1F0@YTBPR01MB3966.CANPRD01.PROD.OUTLOOK.COM>
next in thread | previous in thread | raw e-mail | index | archive | help
Suggestion:=20 Add a check for sysctl vfs.nfsd.server_min_nfsvers and if set to 4 or = higher - automatically enable the =E2=80=9C-R=E2=80=9D option. - Peter > On 20 Oct 2020, at 02:56, Rick Macklem <rmacklem@uoguelph.ca> wrote: >=20 > Hi, >=20 > I've put a patch up on phabricator that adds a new option to mountd > which disables use of rpcbind. This can be done for NFSv4 only = servers. > It appears that rpcbind is now considered a security risk by some. >=20 > I listed freqlabs@ as a reviewer, but if anyone else would like to = review > it, please do so. (Someone has reviewed the man page update already. > Thanks bcr@.) >=20 > It's D26746. >=20 > rick > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to = "freebsd-current-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7F127C98-8E05-45D7-A652-C29D656B4B56>