kerberos and nfs

Josef Allen josallen at cs.fsu.edu
Thu May 30 14:44:55 EDT 2002


Thank you for the heads up.
Now I do have a question that should be correctly answered. Do you know
where I can obtain the documentation.


Josef De Vaughn Allen
                     z

On Thu, 30 May 2002 Nicolas.Williams at ubsw.com wrote:

>
> That's the wrong question to ask.
>
> There is something called Secure NFS, which is really NFS with new authentication flavor called RPCSEC_GSS, which in turn uses GSS-API, which in turn support Kerberos V.
>
> Now. Sun has an implementation of all of that based on MIT krb5 code, though you can't simply take MIT krb5 and plug it in - you must use Sun's code.
>
> And Sun is helping the University of Michigan put together a Linux implementation of NFSv4 (which includes Secure NFS) using MIT krb5. See:
>
> http://www.citi.umich.edu/projects/nfsv4/
>
> So, the questions should really be:
>
> Q1) Does NFS support the use of Kerberos V for network authentication?
> A1) Yes. See above.
>
> Q2) Is there a commercial implementation of NFS supporting the use of Kerberos V for network authentication?
> A2) Yes, for Sun Solaris 2.6, 7, 8 and 9.
>
> Q3) Is there an open source / freeware implementation of NFS supporting the use of Kerberos V for network authentication?
> A3) Yes. See above.
>
> Nico
> --
>
> > -----Original Message-----
> > From: Josef Allen [mailto:josallen at cs.fsu.edu]
> > Sent: Thursday, May 30, 2002 1:03 PM
> > To: Sam Hartman
> > Cc: kerberos at mit.edu
> > Subject: Re: kerberos and nfs
> >
> >
> >
> > Does the mit version of kerb V support nfs?
> >
> >
> > Josef De Vaughn Allen
> >                      z
> >
> >
> > ________________________________________________
> > Kerberos mailing list           Kerberos at mit.edu
> > http://mailman.mit.edu/mailman/listinfo/kerberos
> >
>
> Visit our website at http://www.ubswarburg.com
>
> This message contains confidential information and is intended only
> for the individual named.  If you are not the named addressee you
> should not disseminate, distribute or copy this e-mail.  Please
> notify the sender immediately by e-mail if you have received this
> e-mail by mistake and delete this e-mail from your system.
>
> E-mail transmission cannot be guaranteed to be secure or error-free
> as information could be intercepted, corrupted, lost, destroyed,
> arrive late or incomplete, or contain viruses.  The sender therefore
> does not accept liability for any errors or omissions in the contents
> of this message which arise as a result of e-mail transmission.  If
> verification is required please request a hard-copy version.  This
> message is provided for informational purposes and should not be
> construed as a solicitation or offer to buy or sell any securities or
> related financial instruments.
>




More information about the Kerberos mailing list