Mailinglist Archive: opensuse (3901 mails)
| < Previous | Next > |
Re: [SLE] Duelling SAMBAs
- From: Örn Einar Hansen <orn.hansen@xxxxxxxxxx>
- Date: Wed, 5 Jan 2005 16:46:17 +0100
- Message-id: <200501051646.17197.orn.hansen@xxxxxxxxxx>
Þann Þriðjudagur 04 janúar 2005 18:36 skrifaði Joaquin Menchaca:
> Lastly, SAMBA requires authentication, while NFS does not. You have to
> map SMB-style accounts to UNIX accounts, which can be cumbersome, but
> does provide a level of security. However, NFS requires the UID to
> match, but doesn't do any sort of authentication. This can be considered
> rather dangerous, as a hacker can find the UIDs and get access to the
> files.
True, for the most part ... there is something called NIS that works in
coherence with NFS. Point is, if you have two, or more, Linux or Unix
machines, that already handle authendication adequately. You are likely to
want a "common" userbase, for ease of administration. I see no reason to add
more authendication protocols to that, unless the system is volatile and the
network is insecure ... but I'm not running the pentagon at home.
My 2¢ worth,
Örn
> Lastly, SAMBA requires authentication, while NFS does not. You have to
> map SMB-style accounts to UNIX accounts, which can be cumbersome, but
> does provide a level of security. However, NFS requires the UID to
> match, but doesn't do any sort of authentication. This can be considered
> rather dangerous, as a hacker can find the UIDs and get access to the
> files.
True, for the most part ... there is something called NIS that works in
coherence with NFS. Point is, if you have two, or more, Linux or Unix
machines, that already handle authendication adequately. You are likely to
want a "common" userbase, for ease of administration. I see no reason to add
more authendication protocols to that, unless the system is volatile and the
network is insecure ... but I'm not running the pentagon at home.
My 2¢ worth,
Örn
| < Previous | Next > |