Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Data-in-transit encryption support for NFS #36

Open
hiteshmathur19 opened this issue Nov 12, 2021 · 1 comment
Open

Data-in-transit encryption support for NFS #36

hiteshmathur19 opened this issue Nov 12, 2021 · 1 comment

Comments

@hiteshmathur19
Copy link

Is this a bug report or feature request?

  • Feature Request

What should the feature do:
Based on - Starting NFS-V4, encryption of in-flight data is supported using TLS. NFS 4.1 supports the Kerberos authentication protocol to secure communications with the NFS server. Nonroot users can access files when Kerberos is used.
Kerberos supports cryptographic algorithms that prevent unauthorized users from gaining access to NFS traffic.

Rook-ceph should also provide the data-in-transit encryption for NFS.

What is use case behind this feature:
This bring security to data in transit in NFS provided by rook-ceph
@travisn
Copy link
Member

travisn commented Nov 12, 2021
edited

Is this a request for the rook-nfs operator? If so, any solution would not be specific to ceph since any store can back the nfs server.

Or is this request is for rook-ceph using the CephNFS CRD, please open this issue in the rook/rook repo.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@travisn @hiteshmathur19