Solved

How to validate NFS clients via PCNFS

Posted on 1997-05-19
4
691 Views
Last Modified: 2010-08-05
How to set up NFS in redhat 4.1 linux so that ONLY clients with accounts can mount exported drives.
It seems that any setting in /etc/exports will grant the client access as anonymous.
0
Comment
Question by:dutchman051997
  • 2
4 Comments
 
LVL 2

Expert Comment

by:jprohart
ID: 1584685
in /etc/exports, your lines must match this:

export_dir      machine_which_you_granted_access(options)
like:
/pub      192.168.1.1*(rw,secure,root_squash)
/public            toto(rw) titi(ro,insecure)

for more informations on options, look at the exports man page.

Bye
jean-philippe Rohart
jprohart@alienor.fr
0
 

Author Comment

by:dutchman051997
ID: 1584686
I cannot add each and every of the 200 stations to the exports list for the homedir. some clients are using the same computer to
log in ( 3 shifts-24 hour) I need a solution like PCNFS verification.
I have not found an option to add which did not grand access as anonynous. I.e. Any PCNFS client becomes anonymous during logon and thus anybody can log in even without an account on the LINUX machine.

Gert
0
 

Accepted Solution

by:
crbild earned 50 total points
ID: 1584687
Pc/nfs use usually this files for authenticate the clients:

/etc/pcnfsd.conf
/etc/passwd
/etc/group

in pcnfsd.conf usually go this:

uidrange 1,60002

-------
this mean that all the 'id's of /etc/passwd apart root can
be authenticated from rpc.pcnfsd (daemon that have to run
for give authentication)
that daemon you can launch usually in rc.inet2 (of slackware)
for redhat now i don't remember where is but you can see
with :
grep pcnfsd /etc/rc.d/init.d/*

and you see where is.
about /etc/exports you don't have to do some changing
cause pcnfsd rule all.
by the way :  rpcinfo -p
will give you informations about the rpc daemons
you'll have to see 4 lines with 150001 (pcnfsd)
if no check with pstree -p
if exist the daemon.

0
 

Author Comment

by:dutchman051997
ID: 1584688
This will help somewhat. I cannot find a working pcnfsd for redhat linux though

Gert
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now