23 Dec
2007
23 Dec
'07
13:59
Anders Johansson wrote:
On Sunday 23 December 2007 14:09:44 primm wrote:
I'm now reading that Linux nfs which I installed by yast all by myself is also a security risk.
It is a security risk in that it's not encrypted.
Another problem is that the nfs server in versions 3 and below fully trusts the client about user IDs. It won't put viruses on your machines, but it does mean that if you don't control the root account on all machines, anyone can read any file, or write to any share.
I thought the purpose of root squash was to prevent that. -- Use OpenOffice.org <http://www.openoffice.org> -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org