Bugtraq mailing list archives

Re: NFS exporting

From: mre () primus com (Mike Evans)
Date: Wed, 13 Apr 1994 13:21:33 -0700 (PDT)


On Wed, 13 Apr 1994, Perry E. Metzger wrote:

As for NFS in general, its useless. As soon as you export an NFS
partition to the net (at least if you export it writable), you can
kiss your machine goodbye. Among other nasty tricks, even without the
mountd giving you any informaiton on the host you can just flood the
machine with unlink requests or guess inode generation numbers or
other such things. NFS is a hunk of junk.


You can block NFS (2049) at the router.  But that doesn't stop
internal ways of getting root on machines running NFS / breaking into
machines from the internal network.

Mike

Current thread:

NFS exporting Scott D. Yelich (Apr 13)
- Re: NFS exporting Perry E. Metzger (Apr 13)
  - Re: NFS exporting Mike Evans (Apr 13)
  - Re: NFS exporting Aggelos D. Keromitis (Apr 13)
    - Re: NFS exporting Perry E. Metzger (Apr 13)
    - Re: NFS exporting Michael Neuman (Apr 13)
    - Re: NFS exporting Perry E. Metzger (Apr 14)
    - Re: NFS exporting Paul Graham (Apr 14)
    - Re: NFS exporting Perry E. Metzger (Apr 15)
- <Possible follow-ups>
- Re: NFS exporting smb () research att com (Apr 13)
- Re: NFS exporting Carl Corey (Apr 13)
  - Re: NFS exporting Perry E. Metzger (Apr 14)
    - Re: NFS exporting Rob Quinn (Apr 14)

(Thread continues...)