NetBSD-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: access control for mountd, statd, and lockd?

On Sun, Feb 07, 2010 at 12:09:28PM -0500, Steven Bellovin wrote:
> Is there any way to do strong access control on mountd, statd, and
> lockd?  For mountd, it appears that I can specify a specific port
> number, which I can then wall off with ipfilter.  I see no way to do
> anything similar for statd and lockd -- am I missing something?

The NFS and mount services are special-cased in the RPC standard: they
have static port numbers.

That's not true for statd nor lockd.  So I think what you're trying to
do is not going to work well.


Home | Main Index | Thread Index | Old Index