On 5 December 2017 at 14:21, Rick Moen <rick@???> wrote:
> Quoting Didier Kryn (kryn@???):
>
> > the NFS connection across the world-wide Internet; it is always on a
> > LAN and, given this, I don't see how it can be insecure.
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> Ah, the 'nougat' model of security; hard on the exterior only, soft and
> easily digestible once you get inside. Bon appetit!
I don't know what's a 'nougat' security model, however I don't understand
what you mean.
If you get in the system with local /usr you can write there with root
access.
How would you write to read-only /usr mount in the same case?
How NFS mount will make your system less secure?