Specifications
Share Points in the Network Folder
By default, the Network folder contains at least these subfolders:
Applications Â
Library Â
Servers Â
You can mount share points in any of these subfolders. For more information, see
“Automatically Mounting Share Points for Clients” on page 46.
More servers and shared items are added as they are discovered on your network.
Adding System Resources to the Network Library Folder
The Library folder, located in /Network/, is included in the system search path.
This gives you the ability to make any type of system resource (usually found in the
local Library folder) available on the network. These resources could include fonts,
application preferences, ColorSync proles, desktop pictures, and so forth.
You can use this capability to customize your managed client environment.
For example, suppose you want a specic set of fonts to be available to each user in
an Open Directory domain. You would create a share point containing the fonts
and then set the share point to mount automatically as a shared library on client
computers in /Network/Library/Fonts/. For more information, see “Automatically
Mounting Share Points for Clients” on page 46.
Security Considerations
The most eective method of securing your network is to assign correct privileges for
each le, folder, and share point you create.
Restricting Access to File Services
As stated in “File Services Access Control” on page 29, you can use Service Access
Control Lists (SACLs) to restrict access to AFP, FTP, and SMB services.
Restricting Access to Everyone
Be careful when creating and granting access to share points, especially if you’re
connected to the Internet. Granting access to Everyone (or to World in NFS) could
expose your data to anyone on the Internet. For NFS, it is recommended that you do
not export volumes to World and that you use Kerberos to provide security of NFS
volumes.
30 Chapter 2 Setting Up File Service Permissions