making mp's migratable (virtiofs on pve managed paths only)

Thread starter flash7777
Start date Wednesday at 12:27

Johannes S

Renowned Member

Saturday at 21:49

BobhWasatch said:
One obvious attack @Johannes S slides point out is someone with root on their device creating an account with the same UID as another user. Then mount the share and su to the other user where you can peruse or alter their files.

Just to avoid wrong credits: They are not my slides but from the speaker Sergej Schmidt who did the talk

For the rest I agree with you obviousvsly.
NFS is ok if you have no important data (aka my homelab where everything important is also stored on cloud storage) or for stuff like storage for ProxmoVE, where the whole cluster specific network (corosync, storage network for nfs etc) has it's own dedicated network infrastructure where users and their own devices don't have access.

Reactions: UdoB

You must log in or register to reply here.

Bluesky LinkedIn Reddit Email Link

Top Bottom

We value your privacy

We use essential cookies to make this site work, and optional cookies to enhance your experience.

See further information and configure your preferences

Accept all cookies Reject optional cookies
Essential cookies

These cookies are required to enable core functionality such as security, network management, and accessibility. You may not reject these.

Optional cookies

We deliver enhanced functionality for your browsing experience by setting these cookies. If you reject them, enhanced functionality will be unavailable.

Third-party cookies

Cookies set by third parties may be required to power functionality in conjunction with our captcha service provider for security and anti-spam purposes.

Detailed cookie usage

Privacy policy

Search

Search

making mp's migratable (virtiofs on pve managed paths only)

Johannes S

Renowned Member

We value your privacy