On Thu, 29 Apr 1999 tkaczma@gryf.net wrote:
On Wed, 28 Apr 1999, Kendall Libby wrote:
------- Start of forwarded message (RFC 934 encapsulation) ------- From: pashdown@XMISSION.COM (Pete Ashdown)
/vol/vol0 -root=adminhost
This is all fine and good, but it also exports to the WORLD with root privileges.
Are you sure it exports to all with root priviledges or does it just export to all read/write but as root only to adminhost?
It doesn't export root privs to all, but just exporting read/write to all machines is scary enough. If I am a malicious user, I can find the mount points easily enough, mount the filesystems, and create user accounts on my machine to match any uid on the filer. After that, who needs root privs except for files owner by uid 0?
--Bryan