Host based authentication
J. Bruce Fields
bfields at fieldses.org
Thu Apr 19 15:21:44 EDT 2007
On Thu, Apr 19, 2007 at 10:28:14AM +0100, Ian Grant wrote:
> What I was asking about is whether there is a way to get an NFSV4
> server to trust the clients and allow all privs to user's files, but
> only when the client machine can supply machine credentials. So it's
> host-based authentication, but with machine credentials instead of
> just by IP address.
I suppose you could run non-kerberized NFS over ipsec or ssh tunnels or
something. That seems like roughly the same security model.
--b.
More information about the NFSv4
mailing list