Date: Wed, 20 Sep 1995 16:54:42 +0300 From: kallio@jyu.fi (Seppo Kallio) To: questions@Freebsd.org Subject: * The security of DISKLESS? * Message-ID: <v01530527ac85c710eaaf@[130.234.41.39]>
next in thread | raw e-mail | index | archive | help
What kind of security holes does DISKLESS include?
Some thoughts:
1. Can user boot the DISKLESS to sigle user and then use root provileges?
2. The root partition must be exported with -rootusr=root
- maybe it is possible to hide this dir so that user cannot
save suid progs and login to the server and use them?
- mayb ethere is nosuid in exports preventig to save suid files to
root partition
3. Other holes?
Seppo
--
+-- Seppo Kallio ----- kallio@jyu.fi ---+
! Computing Center ! Fax +358-41-603611 Phone +358-41-603606 !
! University of Jyvaskyla ! http://www.jyu.fi/~kallio !
+-- Finland --+-- 62.14N 25.44E -- +
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?v01530527ac85c710eaaf>