From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: To: 9fans@cse.psu.edu Subject: Re: [9fans] Authenticated mounts from non-plan9 systems Date: Wed, 31 Oct 2007 12:18:05 +0100 From: johnny@sorosj.hd.free.fr In-Reply-To: <20071031111511.B62C21E8C22@holo.morphisms.net> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="upas-nbtxmavwpdxtrmrzpeixukbcqp" Topicbox-Message-UUID: e11942b0-ead2-11e9-9d60-3106f5b1d025 This is a multi-part message in MIME format. --upas-nbtxmavwpdxtrmrzpeixukbcqp Content-Disposition: inline Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Ah okay, I understand. So I should add a listen command to the fossil config, I guess? Thanks! Johnny --upas-nbtxmavwpdxtrmrzpeixukbcqp Content-Type: message/rfc822 Content-Disposition: inline Received: from mail.cse.psu.edu ([130.203.4.6]) by sorosj.hd.free.fr; Wed Oct 31 12:15:47 CET 2007 Received: from psuvax1.cse.psu.edu (localhost [127.0.0.1]) by mail.cse.psu.edu (CSE Mail Server) with ESMTP id AED06EE47 for ; Wed, 31 Oct 2007 07:15:38 -0400 (EDT) X-Original-To: 9fans@cse.psu.edu Delivered-To: 9fans@cse.psu.edu Received: from localhost (localhost [127.0.0.1]) by mail.cse.psu.edu (CSE Mail Server) with ESMTP id 081EBE43E for <9fans@cse.psu.edu>; Wed, 31 Oct 2007 07:15:17 -0400 (EDT) Received: from mail.cse.psu.edu ([127.0.0.1]) by localhost (psuvax1 [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 03175-01-92 for <9fans@cse.psu.edu>; Wed, 31 Oct 2007 07:15:12 -0400 (EDT) Received: from holo.morphisms.net (holo.morphisms.net [216.254.78.15]) by mail.cse.psu.edu (CSE Mail Server) with ESMTP id 72817ECD5 for <9fans@cse.psu.edu>; Wed, 31 Oct 2007 07:15:12 -0400 (EDT) Received: by holo.morphisms.net (Postfix, from userid 1002) id B62C21E8C22; Wed, 31 Oct 2007 07:15:11 -0400 (EDT) To: 9fans@cse.psu.edu Subject: Re: [9fans] Authenticated mounts from non-plan9 systems From: "Russ Cox" Date: Wed, 31 Oct 2007 07:15:10 -0400 In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Message-Id: <20071031111511.B62C21E8C22@holo.morphisms.net> X-Virus-Scanned: by amavisd-new at cse.psu.edu X-BeenThere: 9fans@cse.psu.edu X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu> List-Id: Fans of the OS Plan 9 from Bell Labs <9fans.cse.psu.edu> List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: 9fans-bounces+johnny=sorosj.hd.free.fr@cse.psu.edu Errors-To: 9fans-bounces+johnny=sorosj.hd.free.fr@cse.psu.edu > Well, I tried to find the place where exportfs should go, I did > grep exportfs * > in /rc/bin/services, this found 4 matches, 2 of which are il and disabled, the two other are tcp17007 (cpu, iirc), and tcp564. > tcp17007:exec /bin/exportfs -a -A $netdir > tcp564:exec /bin/exportfs -s > So I guess /rc/bin/service/tcp564 (9fs) should be > exec /bin/exportfs -s -a Actually I don't believe there are any flags you can give to exportfs that will make it authenticate during 9p using Tauth/Rauth. Exportfs -a will run authentication before starting 9P, not during 9P. This has the added benefit of establishing a shared secret that will be used to encrypt the connection with SSL. If you want authentication during 9P, your best bet is probably to use the fossil console `listen' command to make fossil announce to the network directly. Russ --upas-nbtxmavwpdxtrmrzpeixukbcqp--