Solved

is it possible to stop nfs shares from reporting any information about the shares

Posted on 2011-09-13
3
299 Views
Last Modified: 2012-06-21
I have two nfs shares between a as400 and 2 linux serves.  The rhel5 serves will answer a query with the ip address shares.  Is there anyway to have the shares run without telling any computer that they are running?

In other words a stealth share that one can use only if he already knows that it is there.

gary
0
Comment
Question by:javagair
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 21

Accepted Solution

by:
Papertrip earned 500 total points
ID: 36532658
You might be able to accomplish this with TCP wrappers.

First, in /etc/hosts.deny, add
portmap: ALL
rpc.mountd: ALL
rpc.rquotad: ALL

Open in new window


Then, in /etc/hosts.allow, add
portmap: your.ip.address or.your.hostname
rpc.mountd:  your.ip.address or.your.hostname
rpc.rquotad: your.ip.address or.your.hostname

Open in new window

like
rpc.mountd:  192.168.1.1
rpc.rquotad: bob.domain.com

Open in new window



Then restart the NFS server.

I'm not sure if this is going to work, I've never come across the need for this before.  If this way doesn't work, then I don't think it's possible.  Perhaps someone else knows more, but try my idea first.
0
 

Author Comment

by:javagair
ID: 36537463
the reason I asked the question is we got written up on a vulnerability report because they could see which ip address where connected to the nfs shares.

gary
0
 

Author Closing Comment

by:javagair
ID: 36545129
I am accepting this as the answer because after reading this I checked linux information on these subjects and the information appears to correct.  I would have liked to wait till the next vulnerability test was run but that is not for 30 days and questions don't stay open that long.

gary
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you use Debian 6 Squeeze and you are tired of looking at the childish graphical GDM login screen that is used by default, here's an easy way to change it. If you've already tried to change it you've probably discovered that none of the old met…
1. Introduction As many people are interested in Linux but not as many are interested or knowledgeable (enough) to install Linux on their system, here is a safe way to try out Linux on your existing (Windows) system. The idea is that you insta…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question