home *** CD-ROM | disk | FTP | other *** search
- Path: sparky!uunet!ukma!darwin.sura.net!haven.umd.edu!mimsy!afterlife!adm!news
- From: c60244@ccfiris.aedc (Kenny McDonald)
- Newsgroups: comp.sys.sgi
- Subject: Re: Does IRIX support "secure" nfs?
- Message-ID: <34002@adm.brl.mil>
- Date: 9 Nov 92 18:26:25 GMT
- Sender: news@adm.brl.mil
- Lines: 31
-
- Keystrokes of Kenny McDonald, in response to Vernon Schryver:
- >
- >In article <1992Nov5.032429.2196@igor.tamri.com>, lim@igor.tamri.com (Bill Lim) writes:
- >> I haven't seen anything in my system manuals about any kind of
- >> secure nfs. I have used SUN's secure nfs option and am wondering
- >> if it or a functional equivalent exists for IRIX?
- >>
- >> SUN's secure nfs can prevent a user with root permissions on his/her own
- >> workstation to "su" to another user and view or change that user's
- >> files, via nfs, unless the file permisssions are set r/w for others.
- >
- >
- >I thought all NFS servers by default mapped UID 0 to "nobody", usually
- >UID=-1 or something similarly bogus. The original SUN reference source
- >did. So have all SGI NFS products.
- >
-
- This doesn't keep someone with root privs from su'ing to another user in
- order to look at any NFS files belonging to that user. I have heard that
- there is a version of NFS that will not use the effective UID for file
- access; thus handling this type of situation. Has anyone else heard of this?
-
- vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv
- | Kenneth M. McDonald * OAO Corp * Arnold Engineering Development Center |
- | MS 120 * Arnold AFS, TN 37389-9998 * (615) 454-3413 |
- ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
- INTERNET:
- mcdonald@aedc-vax.af.mil
-
- LOCAL:
- c60244@ccfiris
-
