Path: utzoo!attcan!utgpu!jarvis.csri.toronto.edu!rutgers!cs.utexas.edu!uunet!auspex!guy
From: guy@auspex.auspex.com (Guy Harris)
Newsgroups: comp.protocols.nfs
Subject: Re: PCNFS and security
Message-ID: <1756@auspex.auspex.com>
Date: 6 Jun 89 17:39:40 GMT
References: <183@mirsa.inria.fr> <11714@bloom-beacon.MIT.EDU> <108142@sun.Eng.Sun.COM>
Reply-To: guy@auspex.auspex.com (Guy Harris)
Organization: Auspex Systems, Santa Clara
Lines: 12


 >	I really wish that people knew the difference between protocols and
 >implementations.  For that matter, I wish they'd at least read the NFS
 >protocol and realize that it says nothing about security.  Security
 >(and authentication) should be left to the RPC layer.  That's part of
 >its job.

And, in SunOS 4.x and the 4.0 release of the ONC/NFS software, there
exists DES authentication, which does provide much of the security that
is being requested (although, thanks to bureaucratic nonsense on the
part of the US Government, you may have to be a domestic customer of the
ONC/NFS source to get the full DES stuff, sigh).