Date: Sat, 13 May 1995 09:29:55 -0500 (CDT) From: Mike Pritchard <pritc003@maroon.tc.umn.edu> To: security@FreeBSD.org Subject: stat & inode generation numbers Message-ID: <199505131429.JAA09229@mpp.com>
next in thread | raw e-mail | index | archive | help
I just noticed that the stat system call is returning the i-node generation number to non-root callers. I thought that allowing users to determine the i-node generation number of files was considered bad and a security risk in NFS environments, since it makes it possible for someone to come up with valid file handles. Am I mistaken, or should stat be changed to only return st_gen when called by the superuser? -- Mike Pritchard pritc003@maroon.tc.umn.edu "Go that way. Really fast. If something gets in your way, turn"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199505131429.JAA09229>