review of new mountd option disabling use of rpcbind
Peter Eriksson
pen at lysator.liu.se
Tue Oct 20 14:23:16 UTC 2020
Suggestion:
Add a check for sysctl vfs.nfsd.server_min_nfsvers and if set to 4 or higher - automatically enable the “-R” option.
- Peter
> On 20 Oct 2020, at 02:56, Rick Macklem <rmacklem at uoguelph.ca> wrote:
>
> Hi,
>
> I've put a patch up on phabricator that adds a new option to mountd
> which disables use of rpcbind. This can be done for NFSv4 only servers.
> It appears that rpcbind is now considered a security risk by some.
>
> I listed freqlabs@ as a reviewer, but if anyone else would like to review
> it, please do so. (Someone has reviewed the man page update already.
> Thanks bcr at .)
>
> It's D26746.
>
> rick
> _______________________________________________
> freebsd-current at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-current
> To unsubscribe, send any mail to "freebsd-current-unsubscribe at freebsd.org"
More information about the freebsd-current
mailing list