From owner-freebsd-current  Thu Apr 12 11: 6:22 2001
Delivered-To: freebsd-current@freebsd.org
Received: from infres.enst.fr (infres-192.enst.fr [137.194.192.1])
	by hub.freebsd.org (Postfix) with ESMTP id 5E6D337B423
	for <current@FreeBSD.ORG>; Thu, 12 Apr 2001 11:06:19 -0700 (PDT)
	(envelope-from quinot@inf.enst.fr)
Received: from shalmaneser.enst.fr (shalmaneser.enst.fr [137.194.160.128])
	by infres.enst.fr (Postfix) with ESMTP
	id 562B645451; Thu, 12 Apr 2001 20:06:18 +0200 (MET DST)
Received: by shalmaneser.enst.fr (Postfix, from userid 11117)
	id 667D4112DB; Thu, 12 Apr 2001 20:06:17 +0200 (CEST)
Date: Thu, 12 Apr 2001 20:06:17 +0200
From: Thomas Quinot <quinot@inf.enst.fr>
To: Alfred Perlstein <bright@wintelcom.net>
Cc: current@FreeBSD.ORG
Subject: Re: NFS export to netgroup with duplicate hosts
Message-ID: <20010412200617.A12763@shalmaneser.enst.fr>
Reply-To: Thomas Quinot <quinot@inf.enst.fr>
References: <20010412182900.B30764@cuivre.fr.eu.org> <Pine.SGI.4.10.10104121836360.3093471-100000@harem.imp.ch> <20010412110021.D24582@fw.wintelcom.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
User-Agent: Mutt/1.2.5i
In-Reply-To: <20010412110021.D24582@fw.wintelcom.net>; from bright@wintelcom.net on Thu, Apr 12, 2001 at 11:00:22AM -0700
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Le 2001-04-12, Alfred Perlstein écrivait :

> m: "Don't call me dude." *thwack* "The point is that if the
> workstation is untrusted, what's the stop the mallicious hacker
> from taking a read-only filehandle and swapping the top byte with
> the byte required for write access?"

The kernel could include a 'signature' in the handle, e.g. in the form of
a hash of (perm-bytes,handle-bytes,secret-key).

(But the following still holds:)

> s: "Master, this sounds like hella work!"
(plus some crypto algorithm right in kernel space...)
 
> m: "Ahhhh, you are correct, now get cracking!"

Thomas.

-- 
Thomas Quinot ** Département Informatique & Réseaux ** quinot@inf.enst.fr
              ENST   //   46 rue Barrault   //   75634 PARIS CEDEX 13 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message