Where can one find the security alerts / risk discussions about NFS?
I was given csrc.nist.gov as a place to look but the file names and indices
don't give much help.
In particular, how good are various NFS server implementations at checking
the source machine? Garfinkel and Spafford in "Practical UNIX Security say
SUN (up t0 4.x) only checked with mountd and mounting wasn't required (if you
have the file handle).
Does PCNFS check?
One proposal I've heard is to use a meet me server on the bastion host with
the outside mounting files with PCNFS and the inside mounting files with UNIX
NFS. It leaves me cold but is it actually bad?
Thanks in advance for any comments.
Pr. Systems Engineer
Martin Marietta Co.
Email: fwoyach @