Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1994_2

Bugtraq archives for 2nd quarter (Apr-Jun) 1994: Re: NFS exporting

Re: NFS exporting

Steve Simmons (scslokkur.dexter.mi.us)
Thu, 14 Apr 1994 16:10:54 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Paul Graham: "Re: NFS exporting"
Previous message: Christopher Davis: "Re: "NULL""
In reply to: smbresearch.att.com: "Re: NFS exporting"
Next in thread: smbresearch.att.com: "Re: NFS exporting"

Steve Bellovin writes:

>fsirand doesn't give you cryptographyically-strong random numbers;
>however, an outsider isn't ``supposed'' to have even one sample from
>which to work.  (If the outsider is eavesdropping, he or she can pick
>up the root file handle directly, so it doesn't matter much.)

Hmmm...if I understand the attack correctly, all one need do is ask
for random inode numbers until a directory entry is found.  From there,
once recursively extracts `..' until the top is found, and then you 
have the whole tree with names in short order.

Next message: Paul Graham: "Re: NFS exporting"
Previous message: Christopher Davis: "Re: "NULL""
In reply to: smbresearch.att.com: "Re: NFS exporting"
Next in thread: smbresearch.att.com: "Re: NFS exporting"