Paul Fisher wrote: > Just out of curiosity, is there a reason that RPC wasn't updated to > match the upper-level semantics with similar mechanics?
That wouldn't be appropriate, really. People use a range of existing RPC security flavours with NFS (and, nowadays, a range of GSS mechanisms within the RPCSEC_GSS auth flavour), including UNIX, Diffie-Hellman & Kerberos. Of course, there already exist daemons that perform mappings between RPC security creds & UNIX uid/gid, e.g. keyserv, gssd, etc. The difficulty arises with NFSv4 wanting to have its own (informational) id mapping mechanism that is portable across all NFS platforms, without regard for the underling authentication, or transport, mechanisms, which may be totally different, or even non-existent, on some non-UNIX platforms. cheers, calum.