You can find the NFS howto here, http://nfs.sourceforge.net/nfs-howto/. It is also mirrored on TLDP.
- setup is fairly easy on both the client and the server.
Root on the client is root on the server, basically. Userids are directly mapped, so it's not really set up for the case where different people run different machine. You can use the option all_squash to make all access default to some other user/group, which is slightly more secure.
- I don't know about encryption.
The howto above talks about all sorts of security things, like using /etc/hosts.allow and /etc/hosts.deny to block access to various people.
Mounting is very simple:
sudo mount 10.20.30.15:/home/chroot mnt/chroot
- it survives server restarts, and can even dynamically switch from ro to rw.
Everything you need is in /etc/exports. Just do this:
Access must be given on a per-machine basis. There are more advanced methods for specifying machines, like network and netmask
Options can be found in man exports. Some basic ones are
ro or rw
- 'no_root_squash' means that root on the server doesn't
There is a userspace and kernelspace NFS server. It didn't look like the userspace one is maintained anymore, so I used the kernel one, and the info above is specific to the kernel server. Package is nfs-kernel-server (as opposed to nfs-user-server).
If you want to do a server, read about the security stuff somewhere. From reading about it, I have a pretty good idea why it is called "nightmare filesystem"
Change the port the server is running on:
# change port RPCNFSDCOUNT="-p 2050 $RPCNFSDCOUNT"