Ate Somebits's questions -server

Ate Somebits

Asked: 2020-03-18 02:24:35 +0800 CST

Are there any risks passing inbound requests from the private network?

In FreeBSD example ipfilter setting, I can see that requests from 192.168.0.0/16 are blocked (referening RFC1918)

This seems to impose a nuisance on some private network intercom, so I comment it out.

Then I want to allow, say, pings from the local hosts; I do it by allowing incoming pings from 192.168.0.0/24.

Is there a security risk doing it like this? This notation basically includes the router too, but as I understand it, it will not allow source addresses from the WAN side.

Ate Somebits

Asked: 2018-06-21 02:35:14 +0800 CST

NFS "-mapall" doesn't include anonymous clients?

I am accessing Unix-like NFS servers using Client for NFS in Windows Server 2008 R2.

Since the server is not part of AD, and there is no "User Mapping server" active, the documentation states that the client uses anonymous UIDs and GIDs of -2, -2.

Now, on the server side, NFS exports have -mapall= option specified.

Why is it then that a file object with Unix permissions 700 gets access denied? With more relaxed permisssions, access is okay, but if mapall maps all remote users to the specified local user credential (as per the manpage), why do 700 permissions not allow for this?

Are there any risks passing inbound requests from the private network?

NFS "-mapall" doesn't include anonymous clients?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?