Re: knfsd and system crashes

Albert D. Cahalan (acahalan@cs.uml.edu)
Tue, 25 Nov 1997 18:50:53 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Patrick F. Eckert: "Re: Hard disk errors?"
Previous message: Jim Pick: "Re: Hard disk errors?"

>> I think a direct iget to retrieve the inode from the NFS file
>> handle is probably a good idea when all other options fail.
>> However, I am concerned that this may add security holes.
>
> Note that inode guessing is one reason for including inode
> generation numbers in NFS file handles (as is done in the
> BSD NFS implementation).

This would seem to indicate i_version is a critical secret,
perhaps something that should be generated from /dev/urandom
and updated in a similar manner instead of the ++ in use now.

Next message: Patrick F. Eckert: "Re: Hard disk errors?"
Previous message: Jim Pick: "Re: Hard disk errors?"