Re: [Sheflug] Thanks! NFS problem solved.

["Chris J" <cej [at] xxxxxxxxxxxxxxxx>]

> Chris J: I like your method for getting a nauseous quantity of logs
> recorded. And amusing way to fill a hard disk - that also yielded useful
> clues.

Does depend what goes on on a system :) I usually end up logging everything
so if something does go wrong when I'm away from a machine, I've got a log
of it. But it's a log that can be rotated regularly as well as it shouldn't
need to be referred to often. Unless you're insanely curious :) All sorts
of other stuff you can do with syslog as well :)

> If anyone can explain to me either (1) How I can define some ports as
> "secure" in order to remove that "insecure" flag, or (2) How I can alter
> the behavior of the NFS clients so that they only use secure ports or
> (3) What book or resource I should read to discover these things, that
> would be great.

"man exports" reveals that secure ports are those that are below a kernel 
constant, IPPORT_RESERVED. This is usually 1024. It looks more to be a
client issue, as the setting on the server is there to basically deny
clients that connect with a /source/ port of < 1024. So check how your
clients are setting up the mount.

Chris...

-- 
\ Chris Johnson           \
 \ cej [at] nightwolf.org.uk    ~-----,   
  \ http://cej.nightwolf.org.uk/  ~-----------------------------------, 
   \ Redclaw chat - http://redclaw.org.uk - telnet redclaw.org.uk 2000 \____
___________________________________________________________________

Sheffield Linux User's Group -
http://www.sheflug.co.uk/mailfaq.html

  GNU the choice of a complete generation.

#!/usr/bin/perl -w
# Strip all line of this form from html messages
# From: "French, Alastair" <Alastair.French [at] racalinst.co.uk>
 
while (<>){
        $_=~s/(^.*:.*[ <])(\w.*)(@.*)/$1nospam$3/;
        print unless /^Delivered-To:/i ;
}