[cobalt-users] OT: NFS/SMB through a Firewall - Security Recommendations

["Ligard, Vidar" <vligard@xxxxxxxxx>]

Folks,
I have got two linux severs, one on the inside of our firewall, the other on the DMZ. The one on the DMZ is the Cobalt web server, the one on the inside is used as a backup server amongst other things.

I am getting sort of tired of using ftp every time I need to upload a web page, and was wondering if I have any easier options which are secure.

I have tried setting up a mirror on the internal server with a program that automatically uploads the changes whenever they are made on the inside. The inside server then has samba so I can easily get to it from my Win Workstation. Problem is, I was not able to find a good syncronization program that uses the ftp protocol. I wrote my own, but it was just too buggy and clumpsy :(

Now, I am wondering if there would be a good way to setup a fileshare between the two linux servers. Can that me made secure?? In other words, if I should have a security breach on the outside server, how would I be able to block them from coming into my internal server through the file share. Would it be fairly safe if the outside server was the fileshare server, while the inside would mount the system, being the client. What fileshare protocol would be recommended? SMB or NFS?

If anyone has any thought on this, or know of a good efficient way to upload their updated web pages, I would really appreciate it. To me, it just gets tiring to have to manually upload every change, instead of just having a directory or folder to drop the new changes into.

Vidar

*****************************************
Vidar Ligard
RHEMA Bible Church - Computer Information Systems
918 258 1588 x2490
*****************************************