NIS services (a.k.a. Yellow Pages [I need to add links to historical information]) are very useful for managing groups of UNIX machines. However NIS is traditionally rather insecure. There are some measures that you can take to configure NIS in a more secure manner. Thus you should not proceed unless you adhere to the following principles:
The 4.4 BSD Automounter Reference Manual Jan-Simon Pendry and Nick Williams. Celerity FPX 4.1/2. Contributed by Stephen Pope hcx. AutoMounter is here to make your life easier, intelligently managing your NAS servers and shares, ensuring your shares and files are always accessible and ready to use. Multiple Servers. Configure as many servers and shares as you like. AutoMounter will keep track of them all. You can even configure multiple of the same server if you. Verify that automounter kernel support has been enabled: File systems - Kernel automounter version 4 support (also supports v3) CONFIGAUTOFS4FS Optionally, enable the following options in the kernel configuration. AutoMounter 1.5.7. AppStore QR-Code AutoMounter. Developer: Pixeleyes Ltd. Price: $9.99 + Description. Cloudtv 3 8 3. Tired of mounting your network shares? AutoMounter ensures.
- maintain tcpwrapper configuration rigorously on your system: /etc/hosts.allow, /etc/hosts.deny
- maintain rigorously the YP server secure access file: /var/yp/securenets
- maintain rigorously the YP server configuration file: /etc/ypserv.conf
Though this document has a Red Hat bias it should apply as well to other Linux distributions. For other distros you would need to inform yourself about packages to install, and auto-starting commands on boot.
Since some time now, Red Hat server packages are typically NOT automagically configured and started. Affinity photo beta 1 8 2 173 ft. For various sensible security reasons, you are obliged to do this yourself. Therefore you should be aware that you need to:
- configure the service
- set the runlevel start policy for the daemon for future reboots
- launch the service
Note that when installing any machine, you initially set an authentication mode. You can later enable or disable NIS authentication, but you should have a uniform policy for shadow passwords and for MD5 passwords. The default on install for Red Hat systems is to enable both of these. This is a good policy, especially on freenix-only clusters, where these modes are typically supported. Do not change the password modes unless you know what you are doing, and you know how to repair your password file(s).
I show how to set up a server (the hard part) with classic NIS services, including the automounter for home directory access. Then I show how to set up and configure the clients (the easy part :-)
I assume that you installed the NFS Server option on your server, and on any clients which will NFS-export a home directory.
1.1 Conventions and Notes
1.1.1 Document Conventions
- Commands entered in a UNIX shell are shown in 'magenta' (and this user is an ordinary user with a standard bourne shell dollar prompt):
$ SomeCommandEnteredHere - The root user has a 'hash' prompt:
ROOT# SomeCommand - Output is shown in 'gray':
- RPMs (Red Hat Package Manager packages) are shown in 'tomato': example-rpm
1.1.2 Notes on the Sample Network
This example network is configured as a subnet: 192.168.196. I have implemented a security policy which is subnet-based.
+Replicated+filesystem.jpg "Automounter")
- The IP parameters for this example network are:
Network Property Parameter IP domain mynet.home Naming Server 192.168.196.2 with hostname ns Network mask 255.255.255.0 Network Address 192.168.196.0 Broadcast mask 192.168.196.255 - The members of this network are:
Server hostname IP Address eagle.mynet.home 192.168.196.3 Client hostnames IP Address sparrow.mynet.home 192.168.196.4 chicken.mynet.home 192.168.196.5 parrot.mynet.home 192.168.196.6
1.1.3 Notes on the Automounters
Two automounters are used and configured:
- amd This automounter is provided by the am-utils rpm package. In this example it is installed solely for '/net' access to various NFS-accessible systems, both within the NIS domain, and outside of it as well. It really has nothing to do with the NIS configuration documented here, but it can be useful in organisations that already use '/net' mounting. However, do not install it if you don't need it.
- autofs It is installed solely for the NIS domain. 'amd' could also be configured and used in this fashion, but I prefer 'autofs'
1.1.4 Notes on Home Directories
Automounter 1 428
Note that user's home directories are located in various places, and are NFS-exported for automounting. The convention used is that home directory file systems are mounted in /etc/fstab with the path known as /export/home This filesystem is later NFS-exported by the NFS daemon and only mounted on request via NFS and autofs.
Ideally you should locate all home directories onto an NFS server. This often avoids the necessity of backing up client machines - they are instead treated as black boxes, that can be reinstalled on a whim. It also nicely allows us to focus security policy on servers. However in this example we show home directories served from client machines.
-->Applies To: Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows Server 2012 R2, Windows Server 2012, Windows 8
Enables or disables the automount feature. When enabled (the default), Windows automatically mounts the file system for a new basic or dynamic volume when it is added to the system, and then assigns a drive letter to the volume.
Automounter 1 42
1password 7 3. For examples of how this command can be used, see Examples.
Syntax
Parameters
Parameter | Description https://kdsemn.over-blog.com/2020/12/dance-house-vol-1-nexus-download.html. | ||
|---|---|---|---|
Menubar rearranger 2 5. enable | Enables Windows to automatically mount new basic and dynamic volumes that are added to the system and to assign them drive letters. | ||
disable | Prevents Windows from automatically mounting any new basic and dynamic volumes that are added to the system.
| ||
scrub | Removes volume mount point directories and registry settings for volumes that are no longer in the system. This prevents volumes that were previously in the system from being automatically mounted and given their former volume mount point(s) when they are added back to the system. | ||
noerr | For scripting only. When an error is encountered, DiskPart continues to process commands as if the error did not occur. Without this parameter, an error causes DiskPart to exit with an error code. |
Remarks
Automounter 1 4 X 4
- In storage area network (SAN) configurations, disabling automount prevents Windows from automatically mounting or assigning drive letters to any new basic volumes that are visible to the system.
Examples
Automounter 1 45
To see if the automount feature is enabled, type the following commands from within the diskpart command:
To enable the automount feature, type:
To disable the automount feature, type:
Additional references
