[101] in linux-security and linux-alert archive
Re: Safe NFS outline
daemon@ATHENA.MIT.EDU (Thomas Koenig)
Fri Mar 10 15:57:30 1995
To: linux-security@tarsier.cv.nrao.edu
Date: Fri, 10 Mar 1995 21:21:02 +0100 (MET)
In-Reply-To: <m0rmPp6-00013kC@iiit.swan.ac.uk> from "Alan Cox" at Mar 8, 95 05:47:00 pm
From: Thomas.Koenig@ciw.uni-karlsruhe.de (Thomas Koenig)
Reply-To: linux-security@tarsier.cv.nrao.edu
Alan Cox wrote:
> and in the USA packet authentication (like this) is subject to a totally
> bogus Novell software patent, so you'd have to do a no US import license (
> the GPL permits this in these cases).
Well, at least keeping track of who's mounted what ought to
be doable without stamping on any "§$"§$%$ US Software patents;
this will only be somewhat vulnerable to a legitimate client trying to
overstep its authority.
I have to admit to not knowing anything about the firewalling patches,
but could they be used to restrict receiving packets to port 2049 to a
(somewhat more trusted) subdomain? This might be a good start
for people who are stuck with the current situation...
