Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!uunet!seismo!sundc!pitstop!sun!decwrl!hplabs!sdcrdcf!otto!jimi!muddy!greg
From: greg@muddy.cs.unlv.edu (Greg Wohletz)
Newsgroups: comp.unix.wizards
Subject: Re: NFS and many thousands of user-id's
Message-ID: <694@jimi.cs.unlv.edu>
Date: Tue, 3-Nov-87 19:18:48 EST
Article-I.D.: jimi.694
Posted: Tue Nov  3 19:18:48 1987
Date-Received: Sat, 7-Nov-87 10:10:53 EST
References: <7605@g.ms.uky.edu>
Sender: news@jimi.cs.unlv.edu
Reply-To: greg@jimi.cs.unlv.edu (Greg Wohletz)
Organization: The Cave
Lines: 11
Summary: I rolled a one...

In article <7605@g.ms.uky.edu> david@ms.uky.edu (David Herron -- Resident E-mail Hack) writes:
>(As does security problems like -- if you're root on one nfs machine
>you can instantly become root on any other nfs machine
>

I do not belive that the above is correct, or at least you can set things up
to make it incorrect.  Here if a user is root on one machine, he accesses
remote files as if he were uid ``-2''.  This is the default under sunOS 3.4
(and probably earlier).

					--Greg