[OpenAFS] OpenAFS vs NFSv4?
John Rudd
jrudd@ucsc.edu
Mon, 28 Apr 2003 07:22:38 -0700
> From: Ryan Underwood <nemesis-lists@icequake.net>
>
> It seems that NFSv4 does two-way authentication,
On a related line, does NFSv4's authentication apply only at mount
time (like with kerberized NFS), or is it transaction and per-user
oriented like AFS?
(IIRC, kerberized NFS only checked the user credential at mount time,
and then it was otherwise just like normal NFS -- totally trusting of
the client machine's user ID's and ignorant of the user tickets, so
you had no way of restricting each user transaction and requiring each
user to have valid credentials, etc.)
It would seem to me that if it's still only being checked at mount
time that it wouldn't be any more useful (at least to us) than the
old kerberized NFS solution.