:: Re: [DNG] NFS: was mounting /usr
Forside
Slet denne besked
Besvar denne besked
Skribent: Yevgeny Kosarzhevsky
Dato:  
Til: Rick Moen
CC: Dng
Emne: Re: [DNG] NFS: was mounting /usr
On 5 December 2017 at 14:21, Rick Moen <rick@???> wrote:

> Quoting Didier Kryn (kryn@???):
>
> > the NFS connection across the world-wide Internet; it is always on a
> > LAN and, given this, I don't see how it can be insecure.
>           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> Ah, the 'nougat' model of security;  hard on the exterior only, soft and
> easily digestible once you get inside.  Bon appetit!



I don't know what's a 'nougat' security model, however I don't understand
what you mean.
If you get in the system with local /usr you can write there with root
access.
How would you write to read-only /usr mount in the same case?
How NFS mount will make your system less secure?