Excerpts from mail: 8-Feb-94 John B. [EMAIL PROTECTED] (925)
> With AFS we have lost this functionality, and while gaining many enefits
> from AFS lack of this function is prompting us to consider moving user
> data back to a DEC platform, and using NFS mounts to all are compute
> machines.
Why would running AFS prevent you from exporting UNIX file system mounts
to PC clients, as you done in the past with non-AFS hosts? (It
shouldn't.)
Running AFS shouln't affect traditional NFS functionality, unless you
wish to export the AFS filespace (instead of the local UNIX filespace)
so that PCs can have direct access to data stored within AFS. In this
case, you'd need a mechanism to authenticate PC users on the AFS/nfs
server, in addition to running the "normal" PC/nfs software.
PC/nfs programs are generally set up so that the PC client passes a
login name and password to the UNIX host running the NFS server. Though
I don't have specific details, I believe patches are publicly available
that allow the UNIX server to use the password information it receives
to generate AFS tokens which can then be used by the PC client running
the PC/nfs software. The drawback to this kind of system, obviously, is
that your AFS security becomes vulneralbe to the same breaches that NFS
is susceptible to.
I too would welcome hearing from anybody who uses this kind of setup in
a production environment.
Thanks,
Bob Dew
NIH
