[1188] in bugtraq
Re: Re: COPS reporting unrestricted NFS exports under Linux
daemon@ATHENA.MIT.EDU (Ed Arnold)
Mon Mar 6 17:28:43 1995
To: bugtraq@fc.net
Date: Mon, 6 Mar 1995 13:40:58 -0700 (MST)
From: era@ucar.edu (Ed Arnold)
Reply-To: era@ucar.edu (Ed Arnold)
Peter Sivo said:
> I honestly don't have a handy document, but I remember reading somewhere
> that depending on how naive your system software is, if someone had
> a '#' mark in the /etc/hosts.equiv or /.rhosts files, I could change
> some records in my DNS maps and rename my machine like so:
>
> 3.100.212.129.in-addr.arpa IN PTR me.foo.com
>
> TO
>
> 3.100.212.129.in-addr.arpa IN PTR #
>
> (something like that)
>
> so that now my machine is renamed '#'. When your machine sees my machine
> coming in, and looks it up in DNS, it sees that my machine is named '#'
> and since that appears in the /etc/hosts.equiv or /.rhosts, it allows access.
It was my understanding that recent versions of BIND do not allow
characters like '#' in hostnames. Is Linux delivered with an old
BIND that does?
