Message info
 
To:jrnieder@gmail.com From:paul.szabo@sydney.edu.au Subject:Bug#384922: NFS insecure without support for squashing multiple groups Date:Mon, 20 Feb 2012 07:11:01 +1100
 

Dear Jonathan,

>> NFSv4+krb is better only because ...
> Surely the ability to squash multiple uids is also a help. ;-)

Not when asking to squash groups. :-)

I thought that idmapd worked also with AUTH_SYS.

> Do I understand correctly that you are requesting an export or mountd
> option filter_gid, which would behave like --manage-gids except it
> transforms the effective gid to anongid when the specified gid is not
> a group the user belongs to? I haven't carefully looked over the
> protocol specs but at first glance that seems sensible.

Yes, my exact wish.

Thanks, Paul

Paul Szabo psz@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics University of Sydney Australia



--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org