Date: Tue, 3 Oct 1995 13:09:12 -0700 (MST) From: Terry Lambert <terry@lambert.org> To: bde@zeta.org.au (Bruce Evans) Cc: bde@zeta.org.au, terry@lambert.org, current@freebsd.org Subject: Re: Another NFS server problem Message-ID: <199510032009.NAA01892@phaeton.artisoft.com> In-Reply-To: <199510031917.FAA27887@godzilla.zeta.org.au> from "Bruce Evans" at Oct 4, 95 05:17:47 am
next in thread | previous in thread | raw e-mail | index | archive | help
> > >> >The failure mode is triggered for a mkdir of an existing dir by a client, > >> >leaving the path name buffer allocated on the server. > >> > >> nfssrv_mkdir doesn't seem to be reached in that case. > > >Try it from a PC. > > What would a PC client do differently from a FreeBSD (nfsv3) client? calling the mkdir without doing a lookup and expecting the failure to be blocked at the server. I *should* be blocked at the server in any case, since otherwise, it's possible to hack ing (tho a "make directory" attack isn't like to make a CERT advisory any time soon 8-)). Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199510032009.NAA01892>