Re: NFS Security Question

From: Hal Flynn (flynn@securityfocus.com)
Date: 08/13/01


Date: Mon, 13 Aug 2001 14:59:01 -0600 (MDT)
From: Hal Flynn <flynn@securityfocus.com>
To: <focus-sun@securityfocus.com>
Subject: Re: NFS Security Question
Message-ID: <Pine.GSO.4.30.0108131457200.2025-100000@mail>


> Can't do that the way you explained. You might want to try giving sudo
> access and restrict permissions from there. No matter how you slice it,
> root is root and root can do anything.

Which brings up a good point. Using something such as RBAC could change
the ability of this user, as well as root, to su to another user, and even
mount files via NFS. Definately worth looking into, IMO.

Hal Flynn
Sun/Linux Focus Area Manager
Securityfocus

"Arbeit macht das Leben süss."