Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 20 Sep 1995 16:54:42 +0300
From:      kallio@jyu.fi (Seppo Kallio)
To:        questions@Freebsd.org
Subject:   * The security of DISKLESS? *
Message-ID:  <v01530527ac85c710eaaf@[130.234.41.39]>

next in thread | raw e-mail | index | archive | help

What kind of security holes does DISKLESS include?

Some thoughts:

1. Can user boot the DISKLESS to sigle user and then use root provileges?
2. The root partition must be exported with -rootusr=root
   - maybe it is possible to hide this dir so that user cannot
     save suid progs and login to the server and use them?
   - mayb ethere is nosuid in exports preventig to save suid files to
     root partition
3. Other holes?

Seppo

--
 +--    Seppo Kallio       -----             kallio@jyu.fi              ---+
 !    Computing Center       !   Fax +358-41-603611 Phone +358-41-603606   !
 !  University of Jyvaskyla  !         http://www.jyu.fi/~kallio           !
 +--      Finland          --+--            62.14N 25.44E               -- +





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?v01530527ac85c710eaaf>