cfsd(8)
NAME
cfsd - cryptographic file system daemon
SYNOPSIS
cfsd
DESCRIPTION
- cfsd is the user-level daemon for the Cryptographic File
- System (CFS). It is essentially an RPC server for the NFS proto
- col augmented with the CFS_ADMIN protocol. It listens on the CFS
- port (ordinarily port 3049) on the localhost interface.
- The main function of cfsd is to manage the keys for cur
- rently attached encrypted directories, presenting them in clear
- form under the CFS mount point (typically "/crypt").
- cfsd should ordinarily be invoked at boot time from
- /etc/rc (or /etc/rc.local). The rc file should also start
- mountd(8) daemon with least one file system exported to local
- host; note that cfsd itself does not handle the mount protocol.
- Once a mountd is running, the mount(8) command should be invoked
- to mount the exported file system from the localhost interface
- with port=3049.
EXAMPLES
- /usr/local/etc/cfsd
- invokes cfs (in /etc/rc)
- /etc/mount -o port=3049,intr localhost:/ /crypt
- mounts cfs on /crypt (in /etc/rc)
FILES
/crypt cfs mount point
- /etc/exports
- exported file systems
SEE ALSO
cattach(1), cdetach(1), mountd(8), mount(8)
BUGS
- cfsd is single threaded, which means it doesn't handle
- lots of simultanious operations very well. In particular, it is
- not possible to recursively attach encrypted directories, since
- that would lead to a deadlock.
AUTHOR
- Matt Blaze; for information on cfs, email to cfs@re
- search.att.com.