> > Well, this is more or less true...mountd can be circumvented (hope i got this > > right) and one can send direct rpc/nfs requests to the nfsd...the hard part > > is actually guessing a valid file handle (32 byte number!). > > I have read in some documents that regular use of fsirand, a program which > > supposedly assigns to each file/dir a unique file handle, greatly reduces > > chances of a wild guess... > > There are techniques you can exploit here that make hijacking an NFS > partition or simply destroying it way too simple. Name a few Perry, that's what bugtraq is for... Generally alluding to techniques is worthless. -Mike