From: Kurt Seifried [mailto:listuser@seifried.org]
Had that thought too but then it came to my mind that I need user-ids, permissions and timestamp preservation. Doesn't seem as if SMB provides
user id's as in seperate users? err.. SMB supports that. user ids as in intrusiond etection, then don't encrypt it. I'm really not sure what you are talking about on that one. anyways. permissions, SMB does pemrissions, again perhaps you are confusing windows 95/98 with everything else microsoft makes?
I would have wanted to use NFS/SMB/AFS for backup purposes. So how does SMB behave when I try to transfer a Unix file? Does it create the file on the receiving server with the same permissions? What about symlinks?
that to me. I'm now back on NFS and pray that no user will use a network scanner at two in the morning. The servers are connected via a Switch, so that gives me at least some security. But, as you can imagine, it's not
No it doesn't. Anyone that scans the network quickly qill notice the nfs servers/clients, anyone can easily attack the switch to force ot to broadcast, unless you have it set to not drop to multicast/etc/etc, right?
Made some IPTables-rules to block NFS from others. Added arpwatch and set the Switch to deny certain MACs from other ports.
really what I wanted. I read some on Coda, but 1) it's not yet considered to be used in production environment and 2) I'd have to repartition both server's HDDs (coda uses raw devices). *argh*
Yup.
It's really odd to believe that there is only ONE solution in the whole open-source community.
Ehhh. well since I'm still not sure what the exact question is it's hard to answer. you want to transfer files. why not use ftp? rsync? nfs? afs? smb? tcfs? etc. What os's is this between? MSDOS boxes? two suse machines? uhhhhh? why not use IPSec for encrypt it? etc. Ask a real question, get a real answer.
Because it's not just plain files, but files, symlinks, device-files, etc. etc. I don't want to wake up in the morning with a ./init.d/init.d/init.d/init.d/init.d/init.d/init.d/init.d/init.d/init.d/ [...] Regards, Andreas