Re: NFS bug ?!

Harald Koenig (koenig@tat.physik.uni-tuebingen.de)
Sun, 23 Feb 1997 03:01:02 +0100 (MET)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Seth S. Edwards: "Linux and Mac"
Previous message: Meino Christian Cramer: "Re: OOPS: 2.1.26 -- the complete story :-)"

> Two points. One: NFS's fundamental security flaws have been known for
> quite some time. Two: your example is silly, because root could
> also access USER's files by su'ing to USER.

I didn't say that this is a security issue. obviously root can SUID "user" to
access user's files.

I would like to

- know what's the reason and idea that this open() call succeeds for root

- avoid corrupt/incomplete data if root tries to copy such files!
either the file should be accessible and copies entirely or not at all IMHO.

Harald

--
All SCSI disks will from now on                     ___       _____
be required to send an email notice                0--,|    /OOOOOOO\
24 hours prior to complete hardware failure!      <_/  /  /OOOOOOOOOOO\
                                                    \  \/OOOOOOOOOOOOOOO\
                                                      \ OOOOOOOOOOOOOOOOO|//
Harald Koenig,                                         \/\/\/\/\/\/\/\/\/
Inst.f.Theoret.Astrophysik                              //  /     \\  \
koenig@tat.physik.uni-tuebingen.de                     ^^^^^       ^^^^^

Next message: Seth S. Edwards: "Linux and Mac"
Previous message: Meino Christian Cramer: "Re: OOPS: 2.1.26 -- the complete story :-)"