What are the server and client security considerations?

72.What are the server and client security considerations?

Ans.

Server security considerations:

1. Always use the root_squash option in /etc/exports.

2. Enabled by default so do not disable it.

3. With root squashing clients root account can’t even access or change files that only server’s root account can change or access.

Client security considerations:

1. Disable SUID (set UID) programs on NFS mounts using nosuid option.

2. Prevents server’s root account from creating an SUID root program on an exported FS, logging in to the clients as a normal user, and then using the UID root program to become root on the client.

Comments

QT practicals files

Temporarily Available: Click below to download|||||||||||

List and explain all NFS server commands.

65.List and explain all NFS server commands. Ans. 1. exportfs: a) The exportfs command enables user to manipulate the list of current exports without editing /etc/exports. b) It also maintains the list of currently exported file system in /var/lib/nfs/etab. Example: The exportfs –a command initializes /var/lib/nfs/etab, synchronizes it with the contents of /etc/exports. c) To add a new export to etab and also /etc/exports the syntax is : #exportfs –o opts hostdir d) Example: #exportfs –o sync,rw 192.168.166.7:/demo The above command exports the directory /demo to client 192.168.166.7 with export option rw and sync. e) –v option of this command, lists currently exported filesystem. Example: #exportfs –v f) –u options unexports the filesystem as follow: Example: #exportfs –u 192.168.166.7:/demo 2. showmount: a) The showmount command provides information about clients and the file systems they have mounted. b) Syntax is : #showmount [-advhe] [host] ...

Java Program solutions

Temporarily Available: Click below to download...

Ultimate IT solutions

Search This Blog