[PLUG] Samba question
Anthony Schlemmer
aschlemm at attbi.com
Wed Nov 6 19:11:06 UTC 2002
I did come across this article that describes doing encrypted NFS using
OpenSSH. I've never had the need to use something like this but here's
the URL to the article:
http://www.samag.com/documents/s=4072/sam0203d/sam0203d.htm
Tony
On Wednesday 06 November 2002 10:10 am, Paul Heinlein wrote:
> On Wed, 6 Nov 2002, Scott VanHoosen wrote:
> > How do NFS and Samba compare for security, speed, etc?
>
> There are a ton of issues involved in this issue. Here are but a few:
>
> NFS
> - uses basic Unix "user, group, world" file-permission model
> - exports to hosts, not users
> - uids/gids can be shared via NIS or distributed passwd file
> - no widespread standard concerning ACLs
> - RPC-based, so difficult to tunnel except via omnibus VPN solutions
>
>
> SMB/CIFS
> - can be tunnelled reliably via ssh
> - authentication is user- not host-based, but isn't tied as tightly
> into standard Unix auth data sources (NIS, passwd, ...); often, SMB
> auth is handled by a Windows domain controller or a secondary
> password map
> - ordinarily, permissions look "odd" from normal Unix shell commands,
> but can be made to work with NT-style ACLs if sufficiently tweaked
>
> --Paul Heinlein <heinlein at attbi.com>
>
>
> _______________________________________________
> PLUG mailing list
> PLUG at lists.pdxlinux.org
> http://lists.pdxlinux.org/mailman/listinfo/plug
--
Anthony Schlemmer
aschlemm at attbi.com
More information about the PLUG
mailing list