[14126] in bugtraq
Re: Disk (over)quota in Windows 2000
daemon@ATHENA.MIT.EDU (Ian Turner)
Wed Mar 1 20:57:53 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.4.10.10002292248490.30488-100000@crafter.house>
Date: Tue, 29 Feb 2000 22:49:38 -0800
Reply-To: vectro@PIPELINE.COM
From: Ian Turner <vectro@PIPELINE.COM>
X-To: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <95184734106863@kahu.cs.auckland.ac.nz>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> Isn't this just a cluster-size filling issue? It looks like accounting is
> being done on a bytes-used basis but files are managed on a per-cluster basis,
> so it's possible to extend files out to fill the cluster without coming into
> conflict with the quota system.
Which is why effective quota security should enable inode limits as well
as byte limits. If I can take up all the useable clusters with 0-byte
files, that is just as bad as being able to take up the useable space with
1-k files.
Ian Turner
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE4vL2Efn9ub9ZE1xoRAvPmAJ0YzUl1OOE1SMl3tRGijQ4TcsOLFwCeMAHn
VTPL6/ssvbfhXSS5LLwfEi8=
=PbZD
-----END PGP SIGNATURE-----
