Date: Thu, 22 Jun 1995 22:18:11 +0000 From: adam@math.tau.ac.il (adam) To: freebsd-security@freebsd.org Subject: mountd/nonroot mounts Message-ID: <jwe6vMx524ML083yn@math.tau.ac.il>
next in thread | raw e-mail | index | archive | help
Something about mountd... whether -n is specified in the command line or not, nonroot mounts are honored. To check if a request is coming from root or not, it checks the (easily forged) AUTH_UNIX structure instead of the (less easily forged) source port of the client. Since the kernel nfs server doesn't do any check of caller priveleges, that may be all an attacker needs. adam?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?jwe6vMx524ML083yn>