[39] in linux-security and linux-alert archive
Re: NFS server
daemon@ATHENA.MIT.EDU (Alan Cox)
Tue Mar 7 07:38:10 1995
From: iialan@iifeak.swan.ac.uk (Alan Cox)
To: linux-security@tarsier.cv.nrao.edu
Date: Tue, 7 Mar 1995 10:27:06 +0000 (GMT)
In-Reply-To: <199503070130.CAA02132@mvmampc66.ciw.uni-karlsruhe.de> from "Thomas Koenig" at Mar 7, 95 02:30:14 am
Reply-To: linux-security@tarsier.cv.nrao.edu
>
> > I'll see if I can put together a patch tonight for this and upload a
> > new server to some site. I'll also put in the root_squash fix posted
> > recently. While we're at it, are there any other known holes?
>
> Known holes are, or have been:
>
> - Portmapper hole with forwarding; fixed by Vietse Venema's secure
> portmapper.
>
> - Read-only export doesn't work, it is only parsed.
>
> - user can kill of nfsd
>
> - squash_root doesn't work
>
> (all of these in addition to the usual NFS holes).
Add default exports file has a '#' at the start and at least with some nfsd
variants means a machine called '#' can mount all of your disks.
Alan
