Hi I noticed that in newer versions of Linux ( for example: Red Hat Enterprise v9 ), the parameter use-gss-proxy (in [gssd] section of /etc/nfs.conf file ) no longer exists. Why not ? I have also read that some security specialists ( noted in stigviewer.com ) theorize that gssproxy increases security risk. gssproxy facilitates the reliable use of Kerberos secured NFS storage by non-interactive processes. What are the plans for gssproxy: a) continue to actively maintain gssproxy ( and resolve any security concerns ) b) quickly replace gssproxy with another facility to allow non-interactive processes to access Kerberos secured NFS storage c) Declare that non-interactive process access to Kerberos secured NFS storage is being depreciated and people should either revert back to kludgy kinit cron scripts and the flakey gss kernel context behavior of the past or seek non-NFS solutions. Thanks Andy Romero Fermilab / ITD
