O'Reilly logo

Solaris 8 Security by Edgar Danielyan

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Securing the Network File System (NFS)

The Network File System (NFS), currently in Version 3, is a popular but not particularly secure system. In its regular security mode, it is relatively easy to gain unauthorized access to NFS-shared file systems (and sometimes the NFS servers themselves), because NFS does not use strong authentication or encryption. For the same reason, data transferred over NFS may be eavesdropped on while in transit, thus compromising privacy. However, there are few things you can do to make NFS less vulnerable to attacks and minimize losses from successful attacks:

  • Share file systems as read-only whenever possible (share -o ro) .

  • Do not recognize Set User ID (SUID) on shared file systems (share -o nosuid) .

  • Use only Diffie-Hellman ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required