Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
incompatible
on June 21, 2022
|
parent
|
context
|
favorite
| on:
NFS: The Early Years
I remember an issue that it's security model involved trusting the client. If you exported a file system to a PC, somebody could reboot the PC with Linux to get root and ignore the user permissions.
chasil
on June 21, 2022
|
next
[–]
They can get every user except root (assuming that root squash is in place).
NFSv3 and below trusts any uid/gids presented by the client unless they are squashed.
bubblethink
on June 21, 2022
|
prev
[–]
I believe this can be fixed with kerberos, but in practice very few people probably deploy it that way.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
