i think you want to see our "hijacking afs" paper, published in the
january 1991 usenix, also available in
/afs/umich.edu/group/itd/citi/public/techreports/PS.Z/citi-tr-91-4.ps.Z
via afs or anonymous ftp from citi.umich.edu.
most of our attacks are obviated by current afs, but root attacks are
beyond afs' purview. in brief, root can mess with data for any user
authenticated on the compromised machine.
peter
- root user exposure on AFS client John Day
- Re: root user exposure on AFS client Steve Dyer
- Re: root user exposure on AFS client mdw
- peter honeyman
