?
Solved

How to validate NFS clients via PCNFS

Posted on 1997-05-19
4
Medium Priority
?
773 Views
Last Modified: 2010-08-05
How to set up NFS in redhat 4.1 linux so that ONLY clients with accounts can mount exported drives.
It seems that any setting in /etc/exports will grant the client access as anonymous.
0
Comment
Question by:dutchman051997
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 2

Expert Comment

by:jprohart
ID: 1584685
in /etc/exports, your lines must match this:

export_dir      machine_which_you_granted_access(options)
like:
/pub      192.168.1.1*(rw,secure,root_squash)
/public            toto(rw) titi(ro,insecure)

for more informations on options, look at the exports man page.

Bye
jean-philippe Rohart
jprohart@alienor.fr
0
 

Author Comment

by:dutchman051997
ID: 1584686
I cannot add each and every of the 200 stations to the exports list for the homedir. some clients are using the same computer to
log in ( 3 shifts-24 hour) I need a solution like PCNFS verification.
I have not found an option to add which did not grand access as anonynous. I.e. Any PCNFS client becomes anonymous during logon and thus anybody can log in even without an account on the LINUX machine.

Gert
0
 

Accepted Solution

by:
crbild earned 50 total points
ID: 1584687
Pc/nfs use usually this files for authenticate the clients:

/etc/pcnfsd.conf
/etc/passwd
/etc/group

in pcnfsd.conf usually go this:

uidrange 1,60002

-------
this mean that all the 'id's of /etc/passwd apart root can
be authenticated from rpc.pcnfsd (daemon that have to run
for give authentication)
that daemon you can launch usually in rc.inet2 (of slackware)
for redhat now i don't remember where is but you can see
with :
grep pcnfsd /etc/rc.d/init.d/*

and you see where is.
about /etc/exports you don't have to do some changing
cause pcnfsd rule all.
by the way :  rpcinfo -p
will give you informations about the rpc daemons
you'll have to see 4 lines with 150001 (pcnfsd)
if no check with pstree -p
if exist the daemon.

0
 

Author Comment

by:dutchman051997
ID: 1584688
This will help somewhat. I cannot find a working pcnfsd for redhat linux though

Gert
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses
Course of the Month10 days, 4 hours left to enroll

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question