From owner-freebsd-questions@FreeBSD.ORG Sat Jul 3 18:53:31 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9590516A4CE for ; Sat, 3 Jul 2004 18:53:31 +0000 (GMT) Received: from dime54.dizinc.com (dime54.dizinc.com [66.194.239.69]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7395C43D31 for ; Sat, 3 Jul 2004 18:53:31 +0000 (GMT) (envelope-from freebsd@solisix.com) Received: from c-67-172-98-39.client.comcast.net ([67.172.98.39] helo=[192.168.1.13]) by dime54.dizinc.com with esmtp (Exim 4.34) id 1Bgpdh-0004bi-Eq; Sat, 03 Jul 2004 14:53:29 -0400 From: Bruce Hunter To: Erik Trulsson , freebsd-questions@freebsd.org In-Reply-To: <20040703142005.GA77430@falcon.midgard.homeip.net> References: <00ba01c460fe$d9cae910$6601a8c0@grant> <20040703142005.GA77430@falcon.midgard.homeip.net> Content-Type: text/plain Organization: Solisix Software Message-Id: <1088880772.32068.9.camel@solid.solisixoffice.com> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.6 Date: Sat, 03 Jul 2004 14:52:53 -0400 Content-Transfer-Encoding: 7bit X-PopBeforeSMTPSenders: bhunter@solisix.com,freebsd@solisix.com X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - dime54.dizinc.com X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - solisix.com X-Source: X-Source-Args: X-Source-Dir: Subject: Re: NFS and Backups X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 03 Jul 2004 18:53:31 -0000 On Sat, 2004-07-03 at 10:20, Erik Trulsson wrote: > On Sat, Jul 03, 2004 at 09:08:35AM -0400, Grant Peel wrote: > > Hi all, > > > > Happy belated Canada day to all my Cunuk bros :-) and an early happy 4th of > > July all as well! > > > > I have recently decided to use some extra disk space on one of my servers as > > backup space. I have NF client and Servers running OK, but was wondering how > > secure it really is. > > > > In the nfsd setup, we specify what clients are allowed to connect, by simply > > useing the host name. > > > > So if in my nfsd configuration, I specify a host called 'ahab' for example, > > how does the nfsd authenticate this host, and how secure is it? > > I am not certain, but I believe it simply checks the IP-address to see > if a host is allowed to connect. > As for security, NFS is well-known for *NOT* being secure. > Do not use NFS over networks where you don't trust all the machines. > > What should you use instead of NFS? I like the fact that I can open up a window and throw some files to my server. Maybe, something can be accessed through a firewall? Bruce