Re: [Fwd: mountd remote exploit?]

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view	Attachment view

From: Mike Eisler (mre@eng.sun.com)
Date: 09/29/98-10:32:40 AM Z

Next message: Dave Hitz: "Re: management capabilities for NFSv4"
Previous message: Mike Eisler: "Re: [Fwd: mountd remote exploit?]"
In reply to: Damon Atkins: "Re: [Fwd: mountd remote exploit?]"
Next in thread: Mike Eisler: "Re: [Fwd: mountd remote exploit?]"

Date: Tue, 29 Sep 1998 08:32:40 -0700 (PDT)
From: Mike Eisler <mre@eng.sun.com>
Subject: Re: [Fwd: mountd remote exploit?]
Message-ID: <Roam.SIMC.2.0.6.907083160.4680.mre@eng.sun.com>

> Vern Paxson wrote:
> 
> > > We need to prevent this sort of thing in NFS4
> >
> > How do you prevent buffer overflows when defining a protocol?
> >
> >                 Vern
> >
> 
> You ensure that the protocol contains how many bytes are in the buffer
> are being sent.
> and then the server can allocate the buffer and only copy the number of
> bytes
> the client said was in the buffer.
> 
> If the client give a huge number of byes then the server can refuse.

One argument for using TCP (over connection oriented protocols, RPC
requests and responses are prefixed with the record makring ehader
that contains the length).

	-mre
> 
> 
> 
>

Next message: Dave Hitz: "Re: management capabilities for NFSv4"
Previous message: Mike Eisler: "Re: [Fwd: mountd remote exploit?]"
In reply to: Damon Atkins: "Re: [Fwd: mountd remote exploit?]"
Next in thread: Mike Eisler: "Re: [Fwd: mountd remote exploit?]"

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view	Attachment view

This archive was generated by hypermail 2.1.2 : 03/04/05-01:46:26 AM Z CST