beautypg.com

Before you set up nfs service, Setup overview, Step 1: before you begin – Apple Mac OS X Server (version 10.2.3 or later) User Manual

Page 269: Step 2: configure nfs settings

background image

File Services

269

You use the NFS module of Server Settings to configure and manage NFS service. You also
use the Sharing module of Workgroup Manager to set privileges and access levels for the
share points or folders you want to export.

Before You Set Up NFS Service

Be sure to consider the security implications of exporting in NFS before you set up NFS
service.

Security Implications

NFS was created for a secure networking environment, in which you can trust the client
computer users and the people who administer the clients. Whereas access to Apple file
service, Windows file sharing, and FTP service share points is controlled by authentication
(user name and password), access to NFS shared items is controlled by the client software
and file permissions.

NFS allows access to information based on the computer’s IP address. This means that a
particular client computer will have access to certain share points regardless of who is using
the computer. Whenever that computer is started up, some volumes or folders are
automatically mounted or made available, and anyone using that computer can access those
volumes or folders.

With NFS, it’s possible for a user to spoof ownership of another person’s files. For example, if
a file on the server is owned by a user with user ID 1234, and you export a folder that
contains that file, someone on a remote computer can create a local user on the remote
computer, give it a user ID of 1234, mount that folder, and have the same access to the
folder’s contents as the file’s original owner.

You can take some steps to prevent this by creating unique user IDs and by safeguarding user
information. If you have Internet access and plan to export to World, your server should be
behind a firewall.

Setup Overview

Here is an overview of the major steps for setting up NFS service.

Step 1:

Before You Begin

Read “Before You Set Up NFS Service” on page 269 for issues you should keep in mind when
you set up NFS service.

Step 2:

Configure NFS settings

The NFS settings let you set the maximum number of daemons and choose how you want to
serve clients—via TCP, UDP, or both. See “Configuring NFS Settings” on page 270.

LL0395.Book Page 269 Wednesday, November 20, 2002 11:44 AM

See also other documents in the category Apple Software: