Jeff Layton da99e3a724 cifs.upcall: make using ip address conditional on new option ... Igor Mammedov pointed out that reverse resolving an IP address to get the hostname portion of a principal could open a possible attack vector. If an attacker were to gain control of DNS, then he could redirect the mount to a server of his choosing, and fix the reverse resolution to point to a hostname of his choosing (one where he has the key for the corresponding cifs/ or host/ principal). That said, we often trust DNS for other reasons and it can be useful to do so. Make the code that allows trusting DNS to be enabled by adding --trust-dns to the cifs.upcall invocation. Signed-off-by: Jeff Layton <jlayton@redhat.com>		2009-08-26 06:26:02 -04:00
..
cifs_spnego.h	Move mount.cifs/umount.cifs to the top level and remove the outdated copy	2009-06-02 23:24:33 +02:00
cifs.upcall.c	cifs.upcall: make using ip address conditional on new option	2009-08-26 06:26:02 -04:00
mount.cifs.c	mount.cifs: don't pass text ro/rw options to kernel	2009-06-29 06:16:38 -04:00
mount.h	Move mount.cifs/umount.cifs to the top level and remove the outdated copy	2009-06-02 23:24:33 +02:00
mtab.c	Move mount.cifs/umount.cifs to the top level and remove the outdated copy	2009-06-02 23:24:33 +02:00
umount.cifs.c	umount.cifs: do not attempt to update /etc/mtab if it is symbolic link	2009-07-27 12:02:35 -04:00