[2104] in Info-AFS_Redistribution
Re: root user exposure on AFS client
daemon@ATHENA.MIT.EDU (peter honeyman)
Tue Oct 19 21:56:47 1993
From: peter honeyman <honey@citi.umich.edu>
To: dayjohn@vnet.ibm.com
Cc: info-afs@transarc.com
Date: Tue, 19 Oct 1993 19:31:26 -0400
In-Reply-To: dayjohn's message of Tue, 19 Oct 1993 10:43:50 -0400.
i think you want to see our "hijacking afs" paper, published in the
january 1991 usenix, also available in
/afs/umich.edu/group/itd/citi/public/techreports/PS.Z/citi-tr-91-4.ps.Z
via afs or anonymous ftp from citi.umich.edu.
most of our attacks are obviated by current afs, but root attacks are
beyond afs' purview. in brief, root can mess with data for any user
authenticated on the compromised machine.
peter
