Date: Mon, 24 Mar 1997 12:35:52 -0700 (MST) From: Nate Williams <nate@mt.sri.com> To: darrylo@sr.hp.com Cc: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch), freebsd-bugs@freebsd.org Subject: Re: sendmail can't create PID file because of owner permission of /var/run Message-ID: <199703241935.MAA20475@rocky.mt.sri.com> In-Reply-To: <199703241845.AA243889113@hpnmhjw.sr.hp.com> References: <19970324080950.WP16275@uriah.heep.sax.de> <199703241845.AA243889113@hpnmhjw.sr.hp.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Scenario: > > * Intruder breaks into system "A", and manages to become root. .. > * However, system A mounts (via NFS) some of system B's directories. > System B disallows root access via NFS (i.e., root uid == -2). Note: If you're using NFS, you're not concerned about security. NFS is simply insecure no matter how you want to slice it, and if you're relying on noroot for security you're going to get broken into. NFS == No Freaking Security! Nate
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199703241935.MAA20475>