Re: knfsd and system crashes

Steven S. Dick (ssd@nevets.oau.org)
Sat, 15 Nov 1997 10:40:56 -0500 (EST)


Martin von Loewis writes:
>> Or am I just silly in thinking that a server exporting NFS partitions
>> has any semblance of security?
>
>In essence, yes.
[...]
>If the user on the client machine can make up file handles, she can
>also make up user ids.

That's true, and isn't very useful to prevent.

But what if they generate filehandles for inodes not under the exported
directory tree? Do we still not care? Is every part (exported or not)
of every exported filesystem open to this?

Steve