Date: Tue, 20 Oct 2020 16:23:08 +0200 From: Peter Eriksson <pen@lysator.liu.se> To: Rick Macklem <rmacklem@uoguelph.ca> Cc: "freebsd-current@FreeBSD.org" <freebsd-current@FreeBSD.org> Subject: Re: review of new mountd option disabling use of rpcbind Message-ID: <7F127C98-8E05-45D7-A652-C29D656B4B56@lysator.liu.se> In-Reply-To: <YTBPR01MB3966935BC7208D065C7EF0F9DD1F0@YTBPR01MB3966.CANPRD01.PROD.OUTLOOK.COM> References: <YTBPR01MB3966935BC7208D065C7EF0F9DD1F0@YTBPR01MB3966.CANPRD01.PROD.OUTLOOK.COM>
index | next in thread | previous in thread | raw e-mail
Suggestion: Add a check for sysctl vfs.nfsd.server_min_nfsvers and if set to 4 or higher - automatically enable the “-R” option. - Peter > On 20 Oct 2020, at 02:56, Rick Macklem <rmacklem@uoguelph.ca> wrote: > > Hi, > > I've put a patch up on phabricator that adds a new option to mountd > which disables use of rpcbind. This can be done for NFSv4 only servers. > It appears that rpcbind is now considered a security risk by some. > > I listed freqlabs@ as a reviewer, but if anyone else would like to review > it, please do so. (Someone has reviewed the man page update already. > Thanks bcr@.) > > It's D26746. > > rick > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7F127C98-8E05-45D7-A652-C29D656B4B56>