HPE Community
Operating System - HP-UX
1825775 Members
1889 Online
109687 Solutions
New Discussion

PCNFS security issues

 
Chet Woods
Frequent Advisor

‎05-22-2003 08:03 AM

‎05-22-2003 08:03 AM

PCNFS security issues

I'm trying to stop users from being able to login through the "Reflections PCNFS client" as anonymous. Our /etc/exports file looks like this normally:
/apps -anon=65534
/users -anon=65534
/usr/spool/pcnfs -anon=65534

I changed the 65534 to "-1" per the man page for exportfs, and now it won't let anyone login through PCNFS. Any help??

Thanks,
Chet
0 Kudos
Reply
3 REPLIES 3
Tom Danzig
Honored Contributor

‎05-22-2003 09:13 AM

‎05-22-2003 09:13 AM

Re: PCNFS security issues

Are users supplying a username and password as in:

nfs link z: \\host\/tmp user passwd

0 Kudos
Reply
Helen French
Honored Contributor

‎05-22-2003 09:18 AM

‎05-22-2003 09:18 AM

Re: PCNFS security issues

Are all users connecting through reflection using a user name and password? Are you able to mount it through another Unix system? Are the daemons running? Did you try restarting NFS daemons?
Life is a promise, fulfill it!
0 Kudos
Reply
Tim Nelson
Honored Contributor

‎05-23-2003 05:39 AM

‎05-23-2003 05:39 AM

Re: PCNFS security issues

You should be able to restrict access by setting the "access" option in the /etc/exports file.
/uxfilesystem -anon=65534,access=allowedhost1:allowedhost2:allowedhost3

Other users will still be able to see printers and file system folders but will be unable to navigate or retrieve files.
I have been moving away from PCNFS and installing SAMBA which is included with HPUX as a free add-on. This allows direct CIFS(NFS) Server or CLient services to/from UNIX servers to/from Intel platforms and can use NT authentication. Admined via a webpage. Works great.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.