[28] in linux-security and linux-alert archive
Re: NFS server
daemon@ATHENA.MIT.EDU (Thomas Koenig)
Mon Mar 6 21:00:54 1995
To: linux-security@tarsier.cv.nrao.edu
Date: Tue, 7 Mar 1995 02:30:14 +0100 (MET)
In-Reply-To: <m0rlihL-000KjTC@monad.swb.de> from "Olaf Kirch" at Mar 6, 95 08:44:07 pm
From: Thomas.Koenig@ciw.uni-karlsruhe.de (Thomas Koenig)
Reply-To: linux-security@tarsier.cv.nrao.edu
> I'll see if I can put together a patch tonight for this and upload a
> new server to some site. I'll also put in the root_squash fix posted
> recently. While we're at it, are there any other known holes?
Known holes are, or have been:
- Portmapper hole with forwarding; fixed by Vietse Venema's secure
portmapper.
- Read-only export doesn't work, it is only parsed.
- user can kill of nfsd
- squash_root doesn't work
(all of these in addition to the usual NFS holes).
