Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 03 Jul 2004 14:33:22 -0400
From:      Chuck Swiger <cswiger@mac.com>
To:        Grant Peel <gpeel@thenetnow.com>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: NFS and Backups
Message-ID:  <40E6FBF2.1060201@mac.com>
In-Reply-To: <00ba01c460fe$d9cae910$6601a8c0@grant>
References:  <00ba01c460fe$d9cae910$6601a8c0@grant>

next in thread | previous in thread | raw e-mail | index | archive | help
Grant Peel wrote:
> I have recently decided to use some extra disk space on one of my servers as
> backup space. I have NFS client and Servers running OK, but was wondering how
> secure it really is.

NFS is not secure at all.  If you don't trust the local subnet, don't use NFS 
there.  Certainly don't use NFS across the Internet, unless using a secure 
tunnelling/VPN protocol....

> So if in my nfsd configuration, I specify a host called 'ahab' for example,
> how does the nfsd authenticate this host, and how secure is it?

NFS doesn't authenticate the host.  NFS trusts the resolver when reversing the 
IP addr into a hostname.

-- 
-Chuck



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40E6FBF2.1060201>