> The drawback to this kind of system, obviously, is
> that your AFS security becomes vulneralbe to the same breaches that NFS
> is susceptible to.
Actually, this is not at all obvious. I would like to see a careful
analysis of the additional security risks posed by the NFS translator.
I asked this list about this a while back and got nothing.
I think it may be reasonable to expect Transarc to provide this.
> I too would welcome hearing from anybody who uses this kind of setup in
> a production environment.
We do. The weak link is PC/NFS, DOS, etc.
We have placed the source for an AFS authenticating pcnfsd in
/afs/grand.central.org/pub/afs-contrib/tools/pcnfsd
Alternatively, there is PCVENUS. I have been trying unsuccessfully to
get information about this for quite a while.
--
|Rick Cochran 607-255-7223 [EMAIL PROTECTED]|
|Cornell Materials Science Center [EMAIL PROTECTED]|
|E20 Clark Hall, Ithaca, N.Y. 14853 cornell!msc.cornell.edu!rick|
