* Reindl Harald: > mtime -> well, is directly in the header -> Last-Modified > size -> well, directly in the header -> Content-Length > inode -> well, where is there any security implication?
I guess you could use it to form an NFS handle, and use that to bypass intended access restrictions. But that's the fault of NFS, and systems which do not use cryptographic NFS handles probably use non-random or 32-bit inodes, which are open to guessing anyway. -- Florian Weimer <[email protected]> BFK edv-consulting GmbH http://www.bfk.de/ Kriegsstraße 100 tel: +49-721-96201-1 D-76133 Karlsruhe fax: +49-721-96201-99
