background preloader

NFS

Facebook Twitter

NFSv4Howto. I have started moving this information to The required packages are different depending on if the system is a client or a server. In this Howto, the server is the host that has the files you want to share and the client is the host that will be mounting the NFS share. NFSv4 client sudo apt-get install nfs-common NFSv4 server sudo apt-get install nfs-kernel-server After you finish installing nfs-kernel-server, you might see failure to start nfs-kernel-server due to missing entries in /etc/exports. For the error message: mount.nfs4: No such device You will have to load the nfs module with the command modprobe nfs NFSv4 without Kerberos NFSv4 Server NFSv4 exports exist in a single pseudo filesystem, where the real directories are mounted with the --bind option.

Let's say we want to export our users' home directories in /home/users. And mount the real users directory with: sudo mount --bind /home/users /export/users NFSv4 Client NFSv4 and Autofs. Kerberos installation help. Mail comments and suggestions to Jim Rome, the keeper of this page. Visit my Home Page to look at my other acitvities. I would welcome the addition of your Kerberos installation logs. Contents Introduction Pick a Kerberos server machine (kdc) DCE and Kerberos Install the Kerberos server Compiling Kerberos Configuring the Kerberos kdc Setting up a host server Kerberos clients Getting a ticket for another realm Kerberos authentication option in SSL Security problems The Kerbnet solution Available Kerberized goodies Questions and answers Other Kerberos links Introduction There's a lot of talk on the Internet about security and the lack of it on UNIX systems.

One way to help is with Kerberos. Several commercial integrators provide enterprise Kerberos solutions as well as technical support and maintenance. Check out the MIT Kerberos Web Site for the latest Kerberos release news. Pick a Kerberos server machine (kdc) DCE and Kerberos Install the Kerberos server Obtain the necessary code .. .. .. Frequently Asked Questions about Kerberos. Newsgroups: comp.protocols.kerberos,comp.answers,news.answers From: Ken Hornstein <kenh@cmf.nrl.navy.mil> Subject: Kerberos FAQ, v2.0 (last modified 8/18/2000) Followup-To: comp.protocols.kerberos Organization: Naval Research Laboratory, Computational Meta-Facility Summary: This is the list of Frequently Asked Questions about the Kerberos security protocol.

It should be read by anyone who has questions about Kerberos or wants to learn more about it. Approved: news-answers-request@MIT.EDU Archive-name: kerberos-faq/general Posting-Frequency: monthly URL: Copyright: (c) 2000 United States Government as represented by the Secretary of the Navy. All rights reserved. Subject: 0.

Introduction Welcome to the Kerberos FAQ! In general, this FAQ deals with the freely available MIT releases of Kerberos. Questions and comments should be directed to the FAQ maintainer, Ken Hornstein, <kenh@cmf.nrl.navy.mil>. Subject: 1. Subject: 1.2. Http. Learning NFSv4 with Fedora Core 2. By Van Emery Introduction Interested in taking NFSv4, the IETF's newest network file system, for a spin? Fedora Core 2 (FC-2) is a good vehicle for testing it out. The kernel (2.6.5) includes basic NFSv4 support. The nfs-utils package contains many NFS-related scripts, programs, and libraries.

What's the big deal with NFSv4? Works well through firewalls and NAT devices Lock and mount protocols are integrated into the NFS protocol Stateful operations (handles client or server crashes pretty well) Strong security is built-in: uses RPCSEC_GSS (based on GSS-API) Makes extensive use of client-side caching Supports replication and migration Vendor-independent, platform-independent, protocol-independent IETF standard Will support Unix-like clients as well as Windows clients Supports ACLs Handles Unicode (UTF-8) filenames for internationalization Good performance on Internet, even on high-latency, low-bandwidth links NFSv4 supports several security flavors, including AUTH_SYS and RPCSEC_GSS.

Replacing NIS with Kerberos and LDAP HOWTO. What's New February 13, 2004 Updated instructions from OpenLDAP 2.0.x to 2.1.x. OpenLDAP 2.1 has been out for over a year and is considered stable. 2.0 is no longer supported by the OpenLDAP developers. Introduction NIS is a name service for UNIX directories like the passwd map, ethers map, etc. In the last couple of years there has been a lot of buzz about LDAP. So why hasn't LDAP already replaced NIS? What about Kerberos? Alphabet Soup The world of Kerberos and LDAP is filled with various standards, each of which comes with its own acronym (or several). Lightweight Directory Access Protocol. Simple Authentiction and Security Layer. Generic Security Services Application Programming Interface.

Pluggable Authentication Module. Name Service Switch. Principal The term for an entry in a Kerberos database Distinguished Name The term for an entry in an LDAP database Software You'll need the following software. Server (* Implementation used in this documentation) Client Everything on the server, plus: Logs. Lf141, System Administration: automount et autofs. Automount et autofs Résumé: automount et autofs forment un outil puissant qui facilite la gestion des systèmes de fichiers. Ils permettent à tous les utilisateurs d'une machine de monter différents systèmes de fichiers.

En fonction du support physique (disques durs, disquettes, cdrom, ...) et/ou du système d'exploitation, l'écriture des données (pas leur signification) diffère : c'est ce qu'on appelle le système de fichiers (que les experts et les puristes me pardonnent ces raccourcis ;-) Le fichier /etc/fstab contient les points de montage en dur qui seront installés dès le démarrage de la machine. Chaque point correspond à un emplacement et un système de fichiers (par exemple, une des partitions de votre disque dur). Ensuite, si on veut accéder à d'autres points, seul root peut utiliser la commande mount.

Les pages man de mount et fstab donnent une description plus précise et complète de ces commandes et concepts. autofs autofs dispose de 4 options : automount Le fichier /etc/auto.master. NFSv4.