|
|
HP-UX Reference > Nnfs_portmon(5)Tunable Kernel ParametersHP-UX 11i Version 2: December 2007 Update |
|
NAMEnfs_portmon — restricts NFS services to clients from privileged ports DESCRIPTIONThe nfs_portmon tunable enhances security checking on the NFS server. When set to 1, it prevents malicious users from gaining access to files exported by the NFS server. It checks whether the source port from which a request was sent is a privileged port. The range of privileged ports is 512 to 1023. Checking for privileged ports prevents users from writing their own RPC-based applications to defeat the access checking used by the NFS client. EXAMPLESTo set the variable, execute the following command on the target system: kctune nfs_portmon=1 To unset the variable, execute the following command on the target system: kctune nfs_portmon=0 |
|