Date: Sat, 3 Jul 2004 19:15:04 -0400 From: "Grant Peel" <gpeel@thenetnow.com> To: "Chuck Swiger" <cswiger@mac.com> Cc: freebsd-questions@freebsd.org Subject: Re: NFS and Backups Message-ID: <002301c46153$9302a360$6601a8c0@grant> References: <00ba01c460fe$d9cae910$6601a8c0@grant> <40E6FBF2.1060201@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help
So, If I set the exports so that it used 192.168.x.x, and, my managed switch is only set to alow members of my vlan to use those IPs, I should be OK in that case? -Grant ----- Original Message ----- From: "Chuck Swiger" <cswiger@mac.com> To: "Grant Peel" <gpeel@thenetnow.com> Cc: <freebsd-questions@freebsd.org> Sent: Saturday, July 03, 2004 2:33 PM Subject: Re: NFS and Backups > Grant Peel wrote: > > I have recently decided to use some extra disk space on one of my servers as > > backup space. I have NFS client and Servers running OK, but was wondering how > > secure it really is. > > NFS is not secure at all. If you don't trust the local subnet, don't use NFS > there. Certainly don't use NFS across the Internet, unless using a secure > tunnelling/VPN protocol.... > > > So if in my nfsd configuration, I specify a host called 'ahab' for example, > > how does the nfsd authenticate this host, and how secure is it? > > NFS doesn't authenticate the host. NFS trusts the resolver when reversing the > IP addr into a hostname. > > -- > -Chuck > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?002301c46153$9302a360$6601a8c0>