[Hosting] NFS Help
Ed Hill
hosting@trilug.org
07 Aug 2002 15:36:55 -0600
On Wed, 2002-08-07 at 15:20, Tanner Lovelace wrote:
> On Wed, 2002-08-07 at 17:09, Jon Carnes wrote:
> > Try
> >
> > /home 192.168.77.0/24(rw,insecure,no_auth_nlm,root_squash)
> >
> > That generally works for me no matter what the architecture of the client
> > machine is.
>
> Nope. Didn't work. As I said before, I don't have
> any problem at all doing nfs mounts between moya and
> dargo. It's just between anyone and fatalpha. :-(
This is from my memory, so please correct me if I'm wrong:
Right after the initial RH 6.2 install on fatalpha, Jos Purvis ran a
slightly customized version the Bastille hardening script. In addition
to modifying the permissions and configuration files for all sorts of
things, it also created a rather large set of firewall rules.
It could very well be that the Bastille-set default permissions and the
Bastille-created firewall rules is what you're banging up against.
I'm no security expert, but perhaps a simpler set of firewall rules (eg.
something basic created by lokkit and then hand-edited to reflect the
second network card) would be sufficient for security purposes, more
understandable, and less of a general PITA?
Ed
--
Edward H. Hill III, PhD
Post-Doctoral Researcher | Emails: ed@eh3.com, ehill@mines.edu
Division of ESE | URL: http://www.eh3.com
Colorado School of Mines | Phone: 303-273-3483
Golden, CO 80401 | Fax: 303-273-3311
Key fingerprint = 5BDE 4DA1 66BE 4F7B BC17 3A0C 932B 7266 1E76 F123