Path: utzoo!utgpu!attcan!uunet!mcvax!ukc!eagle!icdoc!qmc-cs!liam
From: liam@cs.qmc.ac.uk (William Roberts)
Newsgroups: comp.unix.wizards
Subject: Re: NFS security
Summary: protect mknod
Keywords: NFS, mknod
Message-ID: <604@sequent.cs.qmc.ac.uk>
Date: 31 Aug 88 19:18:56 GMT
References: <126@leibniz.UUCP> <670028@hpclscu.HP.COM> <1394@basser.oz>
Reply-To: liam@cs.qmc.ac.uk (William Roberts)
Organization: Computer Science Dept, Queen Mary College, University of London, UK.
Lines: 16
Expires:
Sender:
Followup-To:
Distribution:

In article <1394@basser.oz> yar@basser.oz (Ray Loyzaga) writes:
>
>Well what happens if on SunOS 3.5 you do as root on your
>workstation on a remote fs
>mknod ~mydir/mem c 3 0
>
>yup, you end up with a nobody owned copy of /dev/mem.

This is not an NFS problem, since it is equally applicable to
non-superusers on a local machine: it is simply a hint that
mknod should be root-only. :-)
-- 

William Roberts         ARPA: liam@cs.qmc.ac.uk  (gw: cs.ucl.edu)
Queen Mary College      UUCP: liam@qmc-cs.UUCP
LONDON, UK              Tel:  01-975 5250