 |
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU |
|
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU |
Derek Atkins <warlord at MIT.EDU> writes: > Yea, except neither NFS nor CIFS provides any level of > network security. Be sure your NetApp is behind a VERY > good firewall! > > -derek I haven't actually tried this, but it occurs to me that if you can remove the nfs server's default route, or point its default route at a box that won't forward packets (perhaps point it at itself), then it would be unable to respond to outside attacks. Of course, the server would then need a DNS server on a different machine on its local subnet; you couldn't be running DNS and NFS services from the same machine if you did this, since a DNS server *must* be able to talk to the root nameservers. And this doesn't allow for multiple subnets, either. I wonder what else might break? Has anyone here tried this before? -- John Abreau / Executive Director, Boston Linux & Unix ICQ 28611923 / AIM abreauj / JABBER jabr at jabber.org / YAHOO abreauj Email jabr at blu.org / WWW http://www.blu.org - Subcription/unsubscription/info requests: send e-mail with "subscribe", "unsubscribe", or "info" on the first line of the message body to discuss-request at blu.org (Subject line is ignored).
 |
|
| BLU is a member of BostonUserGroups | |
| We also thank MIT for the use of their facilities. | |
