Darren J Moffat wrote On 02/14/07 14:30,:
Menno Lageman wrote:
Robert Gordon wrote:
So could we all agree that:
An NFS Server in a zone means that the namespace it exports is
restricted
to that zone only. By that i mean no global zone access to that
namespace,
nor would that namespace
Edward Pilatowicz wrote:
On Thu, Feb 15, 2007 at 12:28:40AM +, Darren J Moffat wrote:
Nicolas Williams wrote:
On Wed, Feb 14, 2007 at 03:27:30PM -0600, Robert Gordon wrote:
There maybe a conflicting security requirement here. Lets say
I'm SA of the zone and i have exported /export/foo with
Nicolas Williams wrote:
On Wed, Feb 14, 2007 at 03:27:30PM -0600, Robert Gordon wrote:
There maybe a conflicting security requirement here. Lets say
I'm SA of the zone and i have exported /export/foo with krb5i
(since my foo really needs tight security :) ) to a limited
set of clients. Then alon
Robert Gordon wrote:
it seems to me that both the local zone and the global zone
should be able to export it (or not export it) independantly.
ed
There maybe a conflicting security requirement here. Lets say
I'm SA of the zone and i have exported /export/foo with krb5i
(since my foo really nee
On Wed, Feb 14, 2007 at 07:30:05PM +, Darren J Moffat wrote:
> and also that the NFSMAPID_DOMAIN may be different for each zone.
> and all security modes are available to all zones, in particular each
> zone that is an NFS server maybe in a different Kerberos REALM.
IMO these reasons alone ar
Menno Lageman wrote:
Robert Gordon wrote:
So could we all agree that:
An NFS Server in a zone means that the namespace it exports is
restricted
to that zone only. By that i mean no global zone access to that
namespace,
nor would that namespace be re-exported within another NFS Server zo