Re: NFS exporting

mcnnostromo.c3.lanl.gov

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Christopher Klaus: "Re: wu-ftpd info."
• Previous message: Perry E. Metzger: "Re: NFS exporting"
• In reply to: Perry E. Metzger: "Re: NFS exporting"
• Next in thread: Perry E. Metzger: "Re: NFS exporting"

> > Well, this is more or less true...mountd can be circumvented (hope i got this
> >  right) and one can send direct rpc/nfs requests to the nfsd...the hard part
> >  is actually guessing a valid file handle (32 byte number!).
> >  I have read in some documents that regular use of fsirand, a program which
> >  supposedly assigns to each file/dir a unique file handle, greatly reduces
> >  chances of a wild guess...
> 
> There are techniques you can exploit here that make hijacking an NFS
> partition or simply destroying it way too simple.

  Name a few Perry, that's what bugtraq is for... Generally alluding to
  techniques is worthless.

-Mike

• Next message: Christopher Klaus: "Re: wu-ftpd info."
• Previous message: Perry E. Metzger: "Re: NFS exporting"
• In reply to: Perry E. Metzger: "Re: NFS exporting"
• Next in thread: Perry E. Metzger: "Re: NFS exporting"