John:
Secure, remote file system mounts... ...sounds like a VPN to
me. Other than that it is sftp, but that too has to be explicitly
supported at both ends. CVS can do the document exchange without
logging in (via ssh2 keys), but sounds like more effort than it would
be worth.
Doug Riddle
--- John Hebert <[EMAIL PROTECTED]> wrote:
>
> --- Jason DeWitt <[EMAIL PROTECTED]> wrote:
> > Most of this would be done on the local lan,I don't
> > feel much like working
> > when I get home, I just play games. =)
> >
> > Yeah, I can scp it up there, but then that negates
> > the whole conversation,
> > becasue I was wanting to get away from making a
> > change to a file then having
> > to upload it to the server every time. either via
> > ftp or scp. I just
> > realized I don't think I told everyone that I was
> > talking about editing
> > webpages here.
>
> Aha, now the smoke clears.
>
> > I think I am going to try out that ftpfs, but back
> > to our security
> > discussion, can't you tunnel your ftp session
> > through ssh? If so is that
> > something that the server will have to be set up to
> > allow? I would assume
> > so.
>
> Well, theoretically, you can't tunnel ftp through ssh,
> or you really don't want to, as the return data port
> is random) and would require that you make a new
> tunnel rule for each random port connection, etc ...
> :P
>
> Instead, you could use sftp in place of ftp
> (http://www.nevis.columbia.edu/cgi-bin/man.sh?man=sftp).
>
> I think your real question is, how do I make
> encrypted, remote filesystem mounts, right? Anybody
> know?
>
> John Hebert
>
>
> > ----- Original Message -----
> > From: "John Hebert" <[EMAIL PROTECTED]>
> > To: <[email protected]>
> > Sent: Wednesday, June 26, 2002 5:08 PM
> > Subject: Re: [brlug-general] vfs?
> >
> >
> > > --- Jason DeWitt <[EMAIL PROTECTED]> wrote:
> > > > well, that is kind of hard to answer. Our main
> > > > production server is
> > > > windows2000, and I have a small linux box
> > running
> > > > apache for my wife's
> > > > website and I mess around on it too. If I am at
> > > > work, I am accessing
> > > > them from a Win2k workstation. If I'm at home,
> > it
> > > > will be either a Win2k
> > > > box or Linux, depending on if I rebooted or not.
> > =)
> > >
> > > Ai-yi-yi.
> > >
> > > > I know I could do either NFS or Samba, but
> > aren't
> > > > there considerable
> > > > security risks? Especially doing NFS over the
> > > > internet? I know windows
> > > > file sharing is full of holes, since Samba is
> > > > emulating that, does it
> > > > have the same shortcomings?
> > >
> > > Sure, the same risks exist. But I was assuming a
> > LAN.
> > > If your connections are both LAN and Internet,
> > then
> > > you really should install OpenSSH 3.4 on your
> > boxen
> > > and just do 'scp file
> > > [EMAIL PROTECTED]:/ftp/dir/blah/blah/'. You can compile
> > > OpenSSH under cygwin or I _think_ ssh.com has an
> > sshd
> > > for Windoze boxes.
> > >
> > > You should not use valuable passwords over FTP
> > over
> > > the Internet, for all the reasons stated before.
> > You
> > > can configure ssh/scp to use locally stored keys
> > and
> > > therefore not need passwords, which is really more
> > > secure than passwords, when you think about it.
> > >
> > > John Hebert
> > >
> > > > ha! It's amazing what you can find when you know
> > the
> > > > right words to
> > > > search for in google! Have a look at this,
> > > >
> > >
> >
> http://www.mandrakeuser.org/docs/connect/cnetips2.html
> > > >
> > > > John Hebert wrote:
> > > > > What operating systems are you using on the
> > client
> > > > and
> > > > > server, Jason? You can use NFS to mount remote
> > > > > filesystems between UNIX boxen, and if your
> > client
> > > > is
> > > > > a Windoze box and the server is a UNIX box,
> > you
> > > > can
> > > > > use SAMBA to make the UNIX box look like a
> > Windoze
> > > > > box.
> > > > >
> > > > > But if mounting an FTP dir is what you want, I
> > > > believe
> > > > > it is doable, as I've heard of others in the
> > past
> > > > > doing it. I just don't know how. :P
> > > > >
> > > > > Good luck!
> > > > > John Hebert
> > > > >
> > > > > --- Doug Riddle <[EMAIL PROTECTED]> wrote:
> > > > >
> > > > >>Jason:
> > > > >> A couple of things...
> > > > >> If the server is on your lan, then you
> > > > probably
> > > > >>do not have to
> > > > >>use FTP to get to that directory. The FTP
> > > > directory
> > > > >>is just another
> > > > >>directory on the sever. The server connects
> > FTP
> > > > >>requests to that
> > > > >>directory as a an FTP share by default. If
> > you
> > > > can
> > > > >>browse the
> > > > >>server, you can probably mount that directory
> > > > >>without FTP. (It helps
> > > > >>to be admin to do that... ;->)
> > > > >> A switched network is still venerable to
> > > > >>sniffing, the nature of
> > > > >>the switches or hubs doesn't stop a sniffer.
> > > > >>However, if your LAN is
> > > > >>locallized, and does not connect remote sites,
> > > > then
> > > > >>sniffing is less
> > > > >>likely.
> > > > >> For what you are doing, I would suggest
> > > > trying
> > > > >>to get the rights
> > > > >>to access the sever without FTP. Barring
> > that,
> > > > you
> > > > >>might look into
> > > > >>tcl, or Midnight Commander. If they won't let
> > you
> > > > >>connect to the FTP
> > > > >>share without FTP, they probably will not be
> > happy
> > > > >>with tcl though
> > > > >>either.
> > > > >>
> > > > >>Doug Riddle
> > > > >>
> > > > >>--- Jason DeWitt <[EMAIL PROTECTED]> wrote:
> > > > >>
> > > > >>>Yeah, I'm looking for the convience. Plus,
> > I'm on
> > > > >>
> > > > >>the same LAN as
> > > > >>
> > > > >>>where
> > > > >>>I am transferring these files. It is a
> > switched
> > > > >>
> > > > >>network, as I
> > > > >>
> > > > >>>understand
> > > > >>>it you shouldn't be able to sniff that out.
> > > > >>>
> > > > >>>I've done some research, it seems that vfs is
> > > > what
> > > > >>
> > > > >>allows you to
> > > > >>
> > > > >>>mount
> > > > >>>diffrent filesystems to the one you are
> > running.
> > > > >>
> > > > >>ie: fat32, ntfs,
>
=== message truncated ===
=====
Warmest Regards,
Doug Riddle
http://www.dougriddle.com
## Firearms are second only to the Constitution in importance; they are the
Peoples' Liberty Teeth." - George Washington ##
__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com
