Bugtraq mailing list archives
Re: nfsbug, bugs
From: newsham () aloha net (Timothy Newsham)
Date: Sun, 5 Feb 1995 18:26:14 -1000 (HST)
The nfsbug program guessed this file handle for my system, how do I protect against someone using it, and how do I make use of this information? GUESSABLE FILE HANDLE 129.186.109.1: (7,6) ufs <0,2,907605096> <0,2,907605
The best you can do is get a non-broken fsirand and rerun it on your system. This will randomize the numbers nfs uses for file handles. After doing this any system currently accessing filesystems exported from your host will have to remount to get valid file handles. How can you use the filehandle? You could stick it in a variable and pass it off to nfs to request operations be done on the file associated with the handle.
UID .. BUG: 129.186.109.1:<unknown> Is this the nobody - truncate - root bug?
Yup. 32 bit uids in requests get truncated to 15 bits after doing the root->nobody translation. This lets you be root over the mount even when nfs remaps the root uid.
Martha Lanatte martha () sol nstl gov System Administrator National Soil Tilth Laboratories
Current thread:
- Re: SEX (fwd) Richard Forno (Feb 02)
- Re: your mail G.J.W. Hagenaars (Feb 03)
- <Possible follow-ups>
- Re: SEX (fwd) Tim.Herman () GSA GOV (Feb 03)
- Re: SEX (fwd) Scott D. Yelich (Feb 03)
- Re: SEX (fwd) Karl Strickland (Feb 03)
- Re: SEX (fwd) der Mouse (Feb 04)
- Re: SEX (fwd) Karl Strickland (Feb 04)
- Re: SEX (fwd) Neil Woods (Feb 04)
- nfsbug, bugs Martha Lanatte (Feb 04)
- Re: nfsbug, bugs Timothy Newsham (Feb 05)
- Re: nfsbug, bugs Martha Lanatte (Feb 06)
- Re: nfsbug, bugs jsz (Feb 06)
- Request for discussion. Timothy Newsham (Feb 05)
- Re: Request for discussion. Michael Neuman (Feb 06)
- Re: Request for discussion. Timothy Newsham (Feb 06)
- Solaris 2.3 ndd bug Mike Shaver (Feb 05)
- Re: Solaris 2.3 ndd bug Darren Reed (Feb 06)
- Re: Solaris 2.3 ndd bug Casper Dik (Feb 06)
- Re: Solaris 2.3 ndd bug Eric Berggren (Feb 06)
- sendmail wizard thing... Jake Hill (Feb 06)