NFS mknod contents.gifindex.gif

NFS mknod

The mknod bug, found on some NFS servers, allows normal users to make devices that should require root access. When normal users can do this, an intruder could create a kmem device and thereby change access to root.

Risk: High

Fix: Get the newest version of the NFS server from your vendor. Many mountd programs support a -nodev option that turns off ability to create a device.