On Thu, 7 Nov 2002, Ed Wilts wrote:
On Thu, Nov 07, 2002 at 03:21:49PM -0800, Todd A. Jacobs wrote:
On Thu, 7 Nov 2002, Ed Wilts wrote:
I used 0/0 as an example. If you choose to map source uid/gid of
500/500 to local uid/gid 600/600, then you still trust the remote
system's view
On Fri, 8 Nov 2002, Matthew Saltzman wrote:
True enough (says the person who posted the original question). But I
wasn't trying to do it across the Internet. I just wanted to share some
If you run firestarter, you can specify trusted interfaces (such as your
internal network) while still
On Thu, 7 Nov 2002, Oliver Rompcik wrote:
What ports on a machine need to be opened in order to export and/or import
NFS mounts?
All implementations of NFS use a fixed port number (2049). This is used so
that a NFS client does NOT have to perform a portmapper query (port 111).
On Thu, Nov 07, 2002 at 10:18:54AM -0500, Matthew Saltzman wrote:
What ports on a machine need to be opened in order to export and/or import
NFS mounts?
Sheesh, it does seems like one might as well run without a firewall. I
knew it was more complicated than just opening the nfs service
On Thu, 7 Nov 2002, Ed Wilts wrote:
NFS absolutely trusts the client not to lie to it. There is *no*
authentication done whatsoever. If the client tells the server that
it's uid/gid is 0/0, the server trusts it. For this reason, you should
This is what root_squash (on by default) and
On Thu, Nov 07, 2002 at 12:23:31PM -0800, Todd A. Jacobs wrote:
On Thu, 7 Nov 2002, Ed Wilts wrote:
NFS absolutely trusts the client not to lie to it. There is *no*
authentication done whatsoever. If the client tells the server that
it's uid/gid is 0/0, the server trusts it. For this
On Thu, 7 Nov 2002, Ed Wilts wrote:
I used 0/0 as an example. If you choose to map source uid/gid of
500/500 to local uid/gid 600/600, then you still trust the remote
system's view of who 500/500 is. root_squash does not help you here.
root_squash and all_squash are mapped automatically to
On Thu, Nov 07, 2002 at 03:21:49PM -0800, Todd A. Jacobs wrote:
On Thu, 7 Nov 2002, Ed Wilts wrote:
I used 0/0 as an example. If you choose to map source uid/gid of
500/500 to local uid/gid 600/600, then you still trust the remote
system's view of who 500/500 is. root_squash does not
What ports on a machine need to be opened in order to export and/or import
NFS mounts?
I know I could take the whole firewall down (the machine is behind another
firewall anyway), but I'd rather not in general (and my intellectual
curiosity is peaked).
Thanks.
--
Matthew
-Original Message-
From: Matthew Saltzman [mailto:mjs;ces.clemson.edu]
Sent: Wednesday, November 06, 2002 3:46 PM
To: [EMAIL PROTECTED]
Subject: Firewall ports for NFS
What ports on a machine need to be opened in order to export and/or import
NFS mounts?
I know I could take the whole firewall down
On Wed, 6 Nov 2002, Matthew Saltzman wrote:
What ports on a machine need to be opened in order to export and/or
import NFS mounts?
You must have at least the following:
nfsd: 2049
sunrpc/portmap: 111
I couldn't get it working properly with ipchains, though...something was
What ports on a machine need to be opened in order to export and/or import
NFS mounts?
All implementations of NFS use a fixed port number (2049). This is used so
that a NFS client does NOT have to perform a portmapper query (port 111).
Unfortunately NFS relies upon some other services for
12 matches
Mail list logo