[2108] in Info-AFS_Redistribution
AFS exposure through NFS translator
daemon@ATHENA.MIT.EDU (rick@msc.cornell.edu)
Wed Oct 20 10:31:45 1993
Reply-To: rick@msc.cornell.edu
From: rick@msc.cornell.edu
X-Originated-From: panther.msc.cornell.edu
To: info-afs@transarc.com (AFS Mailing List)
Date: Wed, 20 Oct 1993 08:58:46 -0400 (EDT)
Given that it has been demonstrated that an arbitrary host can (with a
degree of difficulty which depends on several obscure factors) mount
read/write an NFS filesystem to which it is not granted access, what
does this imply for the security of files in an AFS filesystem.
This is not a simple problem, but I consider it to be extremely important.
I suspect that part of the answer is that files which are accessible to
the translator host due to 'IP address' ACL entries are exposed.
|Rick Cochran 607-255-7223 rick@msc.cornell.edu|
|Cornell Materials Science Center rick@crnlmsc2.bitnet|
|E20 Clark Hall, Ithaca, N.Y. 14853 cornell!msc.cornell.edu!rick|
