Couldn't you specifically deny all outside access to the box from the big bad internet? I'd do that via Iptables on your firewall. You are using a Linux firewall, aren't you?
-----Original Message----- From: kclug-bounces@kclug.org [mailto:kclug-bounces@kclug.org] On Behalf Of Jack Sent: Friday, April 29, 2005 1:54 PM To: Kclug Subject: Re: local development server and mapping drives
--- "D. Hageman" dhageman@dracken.com wrote:
You could easily use any of the following to achieve your goal:
NFS Samba OpenAFS
Each has its pros and cons.
That was kind of my point in asking. Although I really hadn't given NFS serious thought. Last I remember NFS was a rootkit waiting to happen.
I'm looking for something that is somewhat transparent, easy to manage, doesn't need babysitting, has the *nix approach to security. I'm not looking for a CVS. That is another beast entirely. I'm looking for something where, after cheking out the code I can store it on a machine dedicated to apache/<db of choice> so my desktop system doesn't need them running, and modify the code from my desktop and test the changes as I go. Then when I'm happy with it check it back into CVS. In the process my desktop never runs the code, never saves the code (except in cache memory) and never runs the CVS depository.
Thanks for the input people, Brian D.
Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com _______________________________________________ Kclug mailing list Kclug@kclug.org http://kclug.org/mailman/listinfo/kclug
Well, I recommend even on an internal network to setup host based firewalls, use tcp_wrappers, etc. I will say that we still run NFS to support all the EECS linux lab machines at KU and we haven't had a security issue with NFS in a long time. We also run Samba off the box to support all the Windows machines. Either one works quite well.
FYI - the reason why I bring up security and a college network is that college networks get attacked quite a bit. They are usually easy targets for people who are looking to practice their cracking skills since many people are setting up boxes that are not greatly experienced. It is also a worthwhile score due to the large amounts of bandwidth available.
On Fri, 29 Apr 2005, Kelsay, Brian - Kansas City, MO wrote:
Couldn't you specifically deny all outside access to the box from the big bad internet? I'd do that via Iptables on your firewall. You are using a Linux firewall, aren't you?
-----Original Message----- From: kclug-bounces@kclug.org [mailto:kclug-bounces@kclug.org] On Behalf Of Jack Sent: Friday, April 29, 2005 1:54 PM To: Kclug Subject: Re: local development server and mapping drives
--- "D. Hageman" dhageman@dracken.com wrote:
You could easily use any of the following to achieve your goal:
NFS Samba OpenAFS
Each has its pros and cons.
That was kind of my point in asking. Although I really hadn't given NFS serious thought. Last I remember NFS was a rootkit waiting to happen.
I'm looking for something that is somewhat transparent, easy to manage, doesn't need babysitting, has the *nix approach to security. I'm not looking for a CVS. That is another beast entirely. I'm looking for something where, after cheking out the code I can store it on a machine dedicated to apache/<db of choice> so my desktop system doesn't need them running, and modify the code from my desktop and test the changes as I go. Then when I'm happy with it check it back into CVS. In the process my desktop never runs the code, never saves the code (except in cache memory) and never runs the CVS depository.
Thanks for the input people, Brian D.
Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com _______________________________________________ Kclug mailing list Kclug@kclug.org http://kclug.org/mailman/listinfo/kclug
Kclug mailing list Kclug@kclug.org http://kclug.org/mailman/listinfo/kclug
//========================================================\ || D. Hageman dhageman@dracken.com || \========================================================//
-
D. Hageman -
Kelsay, Brian - Kansas City, MO