From nobody@FreeBSD.org  Fri Jan 23 03:29:26 2004
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8316116A4CE
	for <freebsd-gnats-submit@FreeBSD.org>; Fri, 23 Jan 2004 03:29:26 -0800 (PST)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BDB1943D45
	for <freebsd-gnats-submit@FreeBSD.org>; Fri, 23 Jan 2004 03:29:25 -0800 (PST)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.12.10/8.12.10) with ESMTP id i0NBTPdL065818
	for <freebsd-gnats-submit@FreeBSD.org>; Fri, 23 Jan 2004 03:29:25 -0800 (PST)
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.12.10/8.12.10/Submit) id i0NBTPBi065817;
	Fri, 23 Jan 2004 03:29:25 -0800 (PST)
	(envelope-from nobody)
Message-Id: <200401231129.i0NBTPBi065817@www.freebsd.org>
Date: Fri, 23 Jan 2004 03:29:25 -0800 (PST)
From: sandeep <youngflashin@yahoo.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: nis security issue
X-Send-Pr-Version: www-2.0

>Number:         61774
>Category:       kern
>Synopsis:       [nis] nis security issue
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Jan 23 03:30:15 PST 2004
>Closed-Date:    Mon Dec 25 11:10:32 GMT 2006
>Last-Modified:  Mon Dec 25 11:10:32 GMT 2006
>Originator:     sandeep
>Release:        4.8
>Organization:
info vision
>Environment:
1 freebsd server ,
4-8 freebsd clients,
40-90 redhat linux clients

     
>Description:
sir,
     i have used freebsd as nis server ,the server also acts as dns,dhcp,gateway & all users home reside in this server .
     clints r made the member of this server & home directories is mounted in each client.
    the problem is: 
     any user with client root password can make changes to other users home directories.
>How-To-Repeat:

     
>Fix:

     
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: ceri 
State-Changed-When: Fri Jan 23 03:37:32 PST 2004 
State-Changed-Why:  
Check the exports(5) manpage and the maproot option. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=61774 

From: Matthew West <mwest@uct.ac.za>
To: freebsd-gnats-submit@FreeBSD.org
Cc:  
Subject: Re: misc/61774: nis security issue
Date: Fri, 30 Jan 2004 17:34:05 +0200

 Using export(5)'s maproot option doesn't prevent a user on an NFS
 client from becoming root, and then using "su" to become another user
 and access that user's files.
 
 A solution to this problem is to use Kerberos tickets instead of Unix
 user credentials.  Unfortunately, FreeBSD does not currently have a
 Kerberised NFS implementation.
 
 You could try using something other than NFS to allow clients access
 to their files; likely candidates are Coda, AFS and SFS.
 
 SFS (http://www.fs.net/ - ports/security/sfs) is probably the easiest
 to get going with, as you don't need to have a pre-existing Kerberos
 infrastructure to use it.
State-Changed-From-To: closed->open 
State-Changed-By: ceri 
State-Changed-When: Mon Feb 16 05:35:27 PST 2004 
State-Changed-Why:  
Throw this back open with respect to Matthew West's comments. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=61774 
State-Changed-From-To: open->closed 
State-Changed-By: remko 
State-Changed-When: Mon Dec 25 11:10:28 UTC 2006 
State-Changed-Why:  
Eventhough Matthew had a good comment here, I do not think this is 
related to our tools/applications. The submitter should use different 
applications for the thing he wants to do in order to prevent potential 
illegal data access. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=61774 
>Unformatted:
