Linux: File System and Nfs Essay

Submitted By AimFire6969
Words: 820
Pages: 4
Open Document
Developed by Sun Microsystems, NFS allows users to treat shared files as if they are stored on the local file directory. A client/server protocol that operates independently from the OS in that it treats the server as a shared storage device using permissions to restrict access. (Indiana University 2014) In order for NFS to be a useful application, the client and server must be present on separate computers. The client reads the files on the server's directory as if the files were stored on the client's own directory, seamlessly and with ease. The NFS share can be created using either a CLI (command line interface) or a GUI (graphical user interface) format. The graphical user interface is preferred due to ease of access.TCP/IP is the gateway through which access is given and received. (techtarget.com) Using the host’s requests, the user is only given access to files mounted on the server.

User permissions are often squashed to keep attacks at bay. Another useful tool that can be deployed by NFS is read-only access which allows a user to simply read the document. In this case, the user may not write nor execute any commands. Another great way to thwart attacks is to generate rules using the iptables command allowing access to certain ports in the firewall. Another way to do this is to use the rpcbind command. Because NFS has vulnerabilities it is recommended that the implementation of this protocol should be used on LAN networks only. (Fedora n.d.) There is a two-step authentication process a client must adhere to in order to gain access to a server. First is to gain mount access, after that a client must access the shared file on the directory. Using NFS a user can allow or deny certain ports from being accessed. A host can also use an IP address to allow or deny access using either/etc/hosts.allow or /etc/hosts.deny. In order to keep a server secure and to keep a client from getting root privileges a host can use the root_squash (one of many squash commands) command. This only works if all directories are owned by root and not bin, lib, or any other non-root account or directory. This is because a client can use SU and become any user to gain privileges. Now, this is not to say that the client is completely safe, because a share is a two-way street. A suid account can be created by the host on the client machine to gain access to the client files. This can pose a problem for a user that wants to operate in a secure environment. A user can protect themselves by using the nosuid command. This will not allow the creation of the super user ID and therefore thwart this kind of attack. (tldp.org n.d.)

From time to time a user may experience issues when accessing NFS. This is because Linux comes in many different editions and distributions. A user must remember that after making any changes to /etc/exports the system must be rebooted for those changes to take effect. This is an important step as a wild goose chase for changes may ensue if the restart does not take place. Another problem a user may run into is that of the portmap daemon. On some systems, this
Show More

Related Documents: Linux: File System and Nfs Essay

Essay on NFS on a Local Network

NFS on a Local Network Linux Networking 3/10/14 NFS or file sharing on a local network (LAN) the difference is that NTFS is Network File System while NFS is simply Windows NT file system. The key differences between the two is that NTFS uses client server architecture and layered approach. What are the advantages of using NTFS? Log file and checkpoint consistency checks Automatic bad cluster management Transactional NTFS File names stored in Unicode and 8.3 DOS format Alternate…

Words 1188 - Pages 5

Nfs File System Essay

NFS files system is a direct result of the first network file system (Called File Access Listener) developed by Digital Equipment Corporation in 1976. NFS (built over the IP protocol) was the first modern network file system. What began as an experiment, by Sun Microsystems, turned out to quickly become the standard because of its ability to interoperate with other clients and servers. This version of the protocol became much more scalable than previous versions, by supporting large files, and by…

Words 537 - Pages 3

Linux: Domain Name System and Server Essay

the applications. linux Networking Services Printing with CUPS Unix Printing Utilities: LPD and LPR CUPS Cross Platform built around IPP Used on Linux, Windows, Unix, Mac OSX IPP HTTP-based client/server protocol - started in 1996 by Novell et. al. Determines capabilities of printer Submits jobs to printer Determine the status of a printer Determine the status of a print job Cancel a print job Pre-Requisites cups system-config-printer cups-pdf (optional) Configuration GUI (system-config-printer) Web…

Words 4882 - Pages 20

Software Management Plan Analysis

The recommendation for a software management plan is to use RPM. RPM is a software management tool originally created by Red Hat, and later GNU’ed and given to the public at http://www.rpm.org/. It forms the core of administration on most systems, since one of the major tasks for any administrator is installing and keeping software up to date. Various estimates place most of the blame for security break-ins on bad passwords, and old software with known vulnerabilities. This isn’t exactly surprising…

Words 736 - Pages 3

Expressing PVM (Version 3.4): Parallel Virtual Machine

Practical : 1 AIM: INSTALLING PVM (version 3.4) :Parallel Virtual Machine WHAT IS PVM? PVM is a software system that enables a collection of heterogeneous computers to be used as a coherent and flexible concurrent computational resource, or a "parallel virtual machine". The individual computers may be shared- or local-memory multiprocessors, vector supercomputers, specialized graphics engines, or scalar workstations and PCs, that may be interconnected by a variety of networks, such…

Words 7876 - Pages 32

Notes - Load Balancing Essay

Operating System Comparison Elvira Bill, Jennifer Coners, Amber Nightingale-Watson, Chris Sitter, and Michael Sullivan POS355 October 28, 2013 Ashok Rao Operating System Comparison This paper will provide a comparison of the following operating systems; UNIX, LINUX, MAC, and Microsoft Windows. Each section will provide details for each of the operating systems. The areas that will be reviewed include, History, Memory Management, Process Management, File management, Security, User Interface…

Words 4133 - Pages 17

The Roles In The Add Roles Wizard Fall Into What Three Basic Categories?

installation of an operating system that runs in a software environment emulating a physical computer. A. virtual machine B. virtual server C. terminal machine D terminal server Answer: B Applications such as Microsoft Virtual Server 2005 and the Windows Server virtualization technology in Windows Server 2008 make it possible for a single computer to host multiple virtual machines, each of which runs in a completely independent environment. 4. The Windows Server 2008 paging file is __________ times the…

Words 3790 - Pages 16

Essay on Sun Cloud Computing

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4 Virtualization. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . 5 Operating System Virtualization. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6 Platform Virtualization. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6 Network Virtualization. . . . . . . . . .…

Words 8300 - Pages 34

Five Applications And Tools Pre-Loaded On The Tfttwindows01 Server Desktop

1. Name at least five applications and tools pre-loaded on the TargetWindows01 server desktop, and identify whether that application starts as a service on the system or must be run manually. WINDOWS APPLICATION LOADEDSTARTS AS SERVICE Y/N 1. tftpd32 Starts as a service 2. FileZilla Server Interface- The interface does not start as a service and must be ran manually 3. Wireshark – Does not start as a service and must be ran manually 4. Nessus Server Manager – Does not start as a service and…

Words 11873 - Pages 48

Essay on Computer Security and Point Firewall Benchmark

consensus-building process that involves many security experts and are generally generic in nature. The Recommendations are intended to provide helpful information to organizations attempting to evaluate or improve the security of their networks, systems, and devices. Proper use of the Recommendations requires careful analysis and adaptation to specific user requirements. The Recommendations are not in any way intended to be a ―quick fix‖ for anyone‘s information security needs. No Representations…

Words 7516 - Pages 31