civileme wrote: > > It is machine specific rather than user specific, but then mounting the > nfs direectory is normally a root function on the local machine > performing the remote access, This can be controlled (in the sense of > giving non-root users access) on the local machine by editing sudoers > and/or setting up a wheel group and giving some users access to it. There ya go again, civileme. Are you trying to disabuse users of the notion that machines can set up their own security?
> > So the graininess of the security is controlled by the setup of the > network nodes and not by nfs directly, and someone who throws all gates > open in setting up nfs is asking for trouble. Could you possibly be suggesting that good security is incumbent upon having a knowledgeable SA? > > > So the level of security is largely a function of how the local network > is set up. Of course Samba can be used linux-to-linux and can be made > quite secure for those who want all the security in the sharing system, > rather than in the setup. > > Civileme > Well now you have done it: in addition to just installing the os, here you come suggesting, and, I dare say, pointing out that it is methodical system administration the provides the security, and not just installing the software... Hmmm, -- J. Craig Woods UNIX/NT Network/System Administration -Art is the illusion of spontaneity-
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
