On Sun, Apr 19, 2026 at 09:53:48AM -0400, Mouse wrote: > > As a result, without NFSv4 it is hard to expect that NetBSD would be > > considered for new NFS installations. :-( > > Is it? My feeling - deriving largely from my experience - is that NFS > is far more likely to be deployed in a private internal network than > over relatively attackable networks like the open Internet. Do you [...]
My two cents: the current practice is that no network in an organization is (or should be) considered internal and isolated. The previous practice, which I would call the "eggshell," which protects the vulnerable interior with a hard perimeter (firewalls, ids boxes on network uplinks), has failed. Microsegmentation and zero-trust approach are now the foundadion of security. Best regards, -- Piotr 'aniou' Meyer
