[229] in linux-security and linux-alert archive
linux nfsd
daemon@ATHENA.MIT.EDU (Aleph One)
Tue May 9 14:46:15 1995
Date: Tue, 9 May 1995 00:52:31 -0500 (CDT)
From: Aleph One <aleph1@dfw.net>
To: linux-security@tarsier.cv.nrao.edu
Though this would be of interest. Sorry, I usually try this stuff before
I post, but I dont have more than one machine in which to test at the
moment. So someone else will have to look into it.
a1
---------- Forwarded message ----------
Date: Mon, 8 May 1995 10:01:39 -0500
From: robert owen thomas <rthomas@pamd.cig.mot.com>
To: "Dr. Frederick B. Cohen" <fc@all.net>, Mike Neuman <mcn@EnGarde.com>
Cc: bugtraq@fc.net
Subject: and now, back to your regularly scheduled discussion topic...
ObBug: i have recently discovered that it is possible to re-export an
imported filesystem under Linux. to illustrate:
hostA --> exports /usr/share to -access=hostB
hostB --> a linux box. re-exports /usr/share to everyone
hostC --> not implicitly trusted by hostA, mounts /usr/share
aside from any security concerns, this would certainly thrash your nfsd's.
does anyone have any experience with this? i have only recently discovered
this, and have not had time to peruse it in depth.
regards,
--robert
--
o robert owen thomas: Unix consultant. Big Brother. user scratching post. o
o e-mail: rthomas@pamd.cig.mot.com --or-- robt@cymru.com o
o vox: 708.632.5768 fax: 708.632.5694 o
o -- System Administrator's Dictionary -- o
o user (you'zer) n. 1 A waste of system resources; an unwanted load o
o on the processor(s) of a Unix system. 2 Someone who uses Caps Lock. o
