Subtitles of the Movie

Let's review the security options associated with fileservers. As described in the related videos for the vsftp, nfs, and samba servers, you could customize some level of security in those individual configuration files, but you can also configure common levels of security for all services. IP tables-based Firewalls can be configured with the Security Level Configuration tool, as you can see in the GUI version of the tool, it looks like you could easily configure trusted services just by clicking the appropriate tick mark. You would think this supports trusted services for fdp, nfs, and samba services, and that's true for ftp and samba, but for nfs, this isn't good enough, as described in the related NFS video. You'll also need to fix the ports for a few daemons related to NFS in the etc slash sysconfig slash nfs file. You could then configure access through those ports using the other ports option and the "at" port window shown here. All of these services are configured using TCP packets, and thus can also be controlled using TCP Wrappers, as configured in the etc slash hosts dot allow and etc slash hosts dot deny configuration files. Let's review a bit from the TCP Wrappers video. Directives in these files are configured in the daemon client command format, and with these directives, the command isn't required. The daemon is normally defined in the user slash sbin directory. For the vsftp server, the daemon is vsftpd. For the nfs server, the daemon is rvc dot nfsd. For Samba, the daemon is smbd. The client can be configured in domain name format. For example, dot example dot net includes all clients with the example dot net suffix. The client can also be configured in IP address format. For example, the ipaddress network mask combination shown here includes all addresses on that private ip network. And, of course, there is Security Enhanced Linux, which is most easily configured with the SELinux Management tool. It provides fine grain control. Configuration details were described in other videos.