[CS-FSLUG] Curious about Linux networks
Tim Young
Tim.Young at LightSys.org
Sun Oct 30 07:55:25 CST 2005
(grin) To think of smb as being an advanced networking protocol... (heh
heh heh. I know what is coming. Chuckling in advance..)
Smb is the reverse engineered implementation of the Windows Netbios
protocol. The creators of smb have always complained about what
Microsoft has done with it, some of the poor security options, and a few
other major complaints. :)
But then again, unix users have always complained about the Windows ACLs
(Access Control Lists) for security. You should, after all, only need
permissions that look like: rwxrwxrwx. But ACLs are now being
implemented for unix, and smb is one of the primary file-sharing
protocols... Just another result of the Microsoft monopoly project...
There are a few other file-sharing options, though not too many that are
automatically distributed across multiple platforms. Windows is one of
the main platforms that has few options available to it. Windows does
not have many options except smb (I believe windows does still come
bundled with IPX. It had been bundled with win98 and 95, I believe it
is still bundled with XP, but may be harder to find on the CD.)
Other options for sharing files that come in non-windows distros are:
nfs, ftp and scp. (scp is part of ssh)
After that, you will need to start adding them even to a *nix box.
There are a ton of other file-sharing protocols, but few of them come
standard with everything. Novell's IPX can be added to a Linux box, it
does not come with a number of distros. IPx can be fairly inefficient
over a large-scale network, but is relatively efficient on a small-scale
one. Many computer games used it at one time to do gaming over. But,
IPX does not scale well to the Internet, and so was dropped.
For office use, go with SMB unless you have a novell server, then go
with IPX. For home networking, there are a lot of options to play
with. In the long run, most people end up using smb, just because it is
integrated with windows. (You get the network neighborhood, etc.)
*SMB*
Samba does have some very interesting security issues, primarily due to
it's original design. The whole authentication / password sharing
mechanism has a number of issues. Win9x sent plaintext passwords.
WinNT sent "password equivelencies" (if you sniffed it, you could use it
the same way you used a password to get in, even though it was not the
password itself). Win2000 and XP, WHEN YOU HAVE JOINED A DOMAIN, have
machine passwords that change very regularly and automatically. They
also use encrypted passwords and a more complex encryption scheme, which
provided "passable" security.
But, of course, compared to NFS which has fairly low security, you can
lock things down fairly well.
SMB has a number of quirks. Probably the most interesting thing about
it is it's multiple levels of backwards compatibility. With a decent
network infrastructure, you can keep network traffic down. But if you
do not have that, you can get all sorts of broadcast traffic that causes
all sorts of havoc with network switches. SMB uses broadcast packets
(that go to all computers, on the network, so they go to all ports on a
switch) for finding the name of computers on the network and
"browsemaster" election. Both of these occur fairly regularly.
SMB is very well documented in the samba documentation (either on the
samba.org webpage, or in the documentation directory that is part of the
samba package.)
*IPX*
I still run into IPX semi-regularly as I work with mission
organizations. This is not due to the fact that IPX is a good protocol,
but rather because the old Novell servers are still functioning very
well after 10 years. Some of the Novell releases have been such good
work-horses, that people are slow to give them up. Most people that I
see ditching a Novell server do switch to Linux, just because they are
used to a text interface, stability, and complexity. That, and the fact
that they do not have the funds to get into the Windows licensing
structure. :)
I actually know next to nothing about the IPX protocol itself, except
that few people really know how to support it well. :)
Blessings,
- Tim Young
Nathan T. wrote:
> Hi everyone,
>
> I'm not sure if I've just been using Windows too long, but it seems
> the only relatively advanced networking protocol for home networks
> that I know about is smb. I do know about NFS, but my only experience
> with it portrayed it as a very simple networking system where you
> count on all the computers on the network to have users who behave
> themselves, and no advanced features like printer sharing are
> implemented. Don't get me wrong here, I'm not saying that's all it can
> really do, that's simply the extent of my very limited experience with it.
>
> I would like to know more about the different networking options in
> Linux, especially ones that are included with most distributions by
> default. Third party protocols such as Novell netware interest me as
> well, I would like to know though of one that is very well implemented
> across Windows, Mac OS X and Linux, especially if it's easy to set up
> and configure.
>
> Thanks.
>
>------------------------------------------------------------------------
>
>_______________________________________________
>ChristianSource FSLUG mailing list
>Christiansource at ofb.biz
>http://cs.uninetsolutions.com
>
More information about the Christiansource
mailing list