Re: ext3 to include capabilities?
Andreas Siegert (afx@ibm.de)
Fri, 9 Apr 1999 08:15:13 +0200
> >> I'm still waiting for a filesystem-based proposal that works with NFS.
> >
> > Capabilities are there to increase security. Anyone who seriously
> > wants security will not use NFS.
>
> I keep hearing this without a reason. Assuming you filter incoming
> packets and don't allow random insecure machines on your network,
> just how is NFS insecure? You'd have to attack it with some kind of
> multi-machine hard link race condition I think. (but inode generation
> numbers might seal that too)
NFS is insecure because there is no guaranteed user id mapping or access
control. As soon as I can plug in a system on the local LAN I do have access.
You donīt need the big bad internet for NFS security problems, there are enough
inhouse. Most companies I deal with have policies to not use it or at least
disallow sensitive data on NFS.
afx
--
Andreas Siegert afx@ibm.de / afx@barolo.munich.de.ibm.com / AFX at IPNET
Every time we've moved ahead in IBM, it was because someone was willing to take
a chance, put his head on the block, and try something new - Thomas Watson, Jr.
PGP Key: www.muc.de/~afx/pubkey.asc, DF7F 8B58 22BE 3B37 C72B 4184 2900 1141
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/