著者: Arnt Gulbrandsen 日付: To: dng 題目: Re: [DNG] NFS: was mounting /usr
Yevgeny Kosarzhevsky writes: > I don't see that it will give lower security than any other FS in this case.
Rick is trying to say: NFS has a poor reputation for accidental security
misconfigurations. Something about the way NFS is configured leads even
careful, clueful people to make configuration mistakes.
NFS doesn't force you to make a mistake. Not at all. It just has a
reputation for being a bit of a trouble magnet.
Don't Xen and its friends offer read-only device exports from the host? So
the the guest kernel can read a device from the host, but not modify it?