Date: Mon, 24 Mar 1997 13:23:11 -0700 (MST) From: Nate Williams <nate@mt.sri.com> To: Robert Eckardt <roberte@MEP.Ruhr-Uni-Bochum.de> Cc: nate@mt.sri.com (Nate Williams), darrylo@sr.hp.com, joerg_wunsch@uriah.heep.sax.de, freebsd-bugs@freebsd.org Subject: Re: sendmail can't create PID file because of owner permission of /var/run Message-ID: <199703242023.NAA20629@rocky.mt.sri.com> In-Reply-To: <199703242017.VAA01096@ghost.mep.ruhr-uni-bochum.de> References: <199703241935.MAA20475@rocky.mt.sri.com> <199703242017.VAA01096@ghost.mep.ruhr-uni-bochum.de>
next in thread | previous in thread | raw e-mail | index | archive | help
> > If you're using NFS, you're not concerned about security. NFS is simply > > insecure no matter how you want to slice it, and if you're relying on > > noroot for security you're going to get broken into. > > What alternative would you recommend for a networked file system ? I use NFS, but I *never* export anything past my firewall. If you need to have something exported beyond your local domain, then I would say that writing a client/server application to get access to the information is the only secure thing to do. Anyone with physical access to your wire where NFS packets are on can probably compromise security on your NFS server. Nate
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199703242023.NAA20629>