[209] in linux-security and linux-alert archive
NFS uid/gid map daemon
daemon@ATHENA.MIT.EDU (Olaf Kirch)
Sat Apr 15 12:24:52 1995
From: okir@monad.swb.de (Olaf Kirch)
To: linux-security@tarsier.cv.nrao.edu
Date: Sat, 15 Apr 1995 18:15:25 +0200 (MET DST)
Cc: juphoff@tarsier.cv.nrao.edu (Jeff Uphoff)
Hello,
prompted by a posting in c.o.l.networking, I looked at the ugidd
stuff present in earlier versions of nfsd. I found that it may be a
security problem for some sites.
The ugidd interface specifies a call that maps a given uid or gid to
a user or group name. This lets others collect all user names on your
host by simply looping through the uid space.
Immediate fix: kill off rpc.ugidd and make sure it isn't started from
rc.inet2.
Note that although nfsd version 2.0 and later does not support the ugid
protocol anymore (I guess now I know why Rick removed it:), the server
is still shipped with current distributions.
Olaf
--
Olaf Kirch | --- o --- Nous sommes du soleil we love when we play
okir@monad.swb.de | / | \ sol.dhoop.naytheet.ah kin.ir.samse.qurax
