Re: NFS exporting

ccdesccdes.princeton.nj.us

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Perry E. Metzger: "Re: NFS exporting"
• Previous message: Tom Fitzgerald: "Re: chrooted superuser (was wu-ftpd info.)"
• Maybe in reply to: Scott D. Yelich: "NFS exporting"
• Next in thread: Perry E. Metzger: "Re: NFS exporting"

>As for NFS in general, its useless. As soon as you export an NFS
>partition to the net (at least if you export it writable), you can
>kiss your machine goodbye.
>[...]
>Perry

Now, are we talking exporting writeable to everyone, or _any_ NFS exported
writeable partition?

Let's say that I have two machines, server.foo.com and client.foo.com

server has one NFS exported volume which is for client.foo.com (diskless).  

showmount looks something like this:

 % showmount -e server.foo.com
 export list for server.foo.com:
 /export                            client.foo.com


is this exploitable?  How would it be exploited?  Is there a way to keep
people from exploiting it (besides not exporting it)?

cc

• Next message: Perry E. Metzger: "Re: NFS exporting"
• Previous message: Tom Fitzgerald: "Re: chrooted superuser (was wu-ftpd info.)"
• Maybe in reply to: Scott D. Yelich: "NFS exporting"
• Next in thread: Perry E. Metzger: "Re: NFS exporting"