bob@jupiter.UUCP (Bob Schulman) (07/27/89)
The Unix authorization info which is in the NFS/mount protocol includes a field called the "machine name" (or something like that). Is this field used by anyone? What do NFS servers/mount daemons do if this field is garbage or if it's a zero length string? Thanks for the info. bob schulman bob@jupiter.com -or- uunet!jupiter!bob
time@oxtrap.oxtrap.UUCP (Tim Endres) (07/29/89)
In article <892@jupiter.UUCP> bob@jupiter.UUCP (Bob Schulman) writes:
The Unix authorization info which is in the NFS/mount protocol includes a field
called the "machine name" (or something like that). Is this field used
by anyone? What do NFS servers/mount daemons do if this field is garbage
or if it's a zero length string?
This is the way NFS checks you against the export list. It is a big hole.
If I "name" my Sun some other name, I am the new machine in terms of
the export list. The more correct way is to also check my name against
the address I am using to see if it matches my /etc/hosts. If it does
not, then someone is spoofing the name. This has been fixed in later
versions I beleive.