Woah! I was doing a find today and a friend’s machine showed up under my
/net directory. What gives with that? I could, as root, freely traverse
his machine without him a, knowing it, and b, giving me permission to do
this. I never set up any type of shared system between our two computers so
was shocked that this had been set up for me. How is this happening and why
does it do it by default?
I need to know how to disable it or not have it installed at install time.
Was it some package I installed?
TIA,
Jim
The enumerators are starting it for you automatically. You’ve got two
options, find the entry in the enumerator file and remove it, or create an
/etc/rc.d/rc.local (make sure it has execute permissions) that does
a umount /dev/io-net/qnet0 (that will unmount qnet).
– drempel
PS: Don’t tell me what a security hole this “feature” is, I already know,
but can’t do anything about it.
Jim Lambert <jlambert@futurex.com> wrote:
Woah! I was doing a find today and a friend’s machine showed up under my
/net directory. What gives with that? I could, as root, freely traverse
his machine without him a, knowing it, and b, giving me permission to do
this. I never set up any type of shared system between our two computers so
was shocked that this had been set up for me. How is this happening and why
does it do it by default?
I need to know how to disable it or not have it installed at install time.
Was it some package I installed?
TIA,
Jim
If I do the rc.local thing and umount the io-net driver for qnet, will this
just disallow me from seeing others or will it disallow others from seeing
me as well?
Jim
“David Rempel” <drempel@qnx.com> wrote in message
news:a4bkc3$bkq$1@nntp.qnx.com…
The enumerators are starting it for you automatically. You’ve got two
options, find the entry in the enumerator file and remove it, or create an
/etc/rc.d/rc.local (make sure it has execute permissions) that does
a umount /dev/io-net/qnet0 (that will unmount qnet).
– drempel
PS: Don’t tell me what a security hole this “feature” is, I already know,
but can’t do anything about it.
Jim Lambert <> jlambert@futurex.com> > wrote:
Woah! I was doing a find today and a friend’s machine showed up under
my
/net directory. What gives with that? I could, as root, freely
traverse
his machine without him a, knowing it, and b, giving me permission to do
this. I never set up any type of shared system between our two
computers so
was shocked that this had been set up for me. How is this happening and
why
does it do it by default?
I need to know how to disable it or not have it installed at install
time.
Was it some package I installed?
TIA,
Jim
Yes both are disabled …
QNX is a RTOS and QNET is designed aiming something else rather than
networking alone, you cant expect security in QNET …You refer QNET
documentation to convince yourself (As i did previously)
Regards
Manigandan
“Jim Lambert” <jlambert@futurex.com> wrote in message
news:a4f3sc$58s$1@inn.qnx.com…
If I do the rc.local thing and umount the io-net driver for qnet, will
this
just disallow me from seeing others or will it disallow others from seeing
me as well?
Jim
“David Rempel” <> drempel@qnx.com> > wrote in message
news:a4bkc3$bkq$> 1@nntp.qnx.com> …
The enumerators are starting it for you automatically. You’ve got two
options, find the entry in the enumerator file and remove it, or create
an
/etc/rc.d/rc.local (make sure it has execute permissions) that does
a umount /dev/io-net/qnet0 (that will unmount qnet).
– drempel
PS: Don’t tell me what a security hole this “feature” is, I already
know,
but can’t do anything about it.
Jim Lambert <> jlambert@futurex.com> > wrote:
Woah! I was doing a find today and a friend’s machine showed up under
my
/net directory. What gives with that? I could, as root, freely
traverse
his machine without him a, knowing it, and b, giving me permission to
do
this. I never set up any type of shared system between our two
computers so
was shocked that this had been set up for me. How is this happening
and
why
does it do it by default?
I need to know how to disable it or not have it installed at install
time.
Was it some package I installed?
TIA,
Jim
\
Manigandan Varadharajan <vm@myw.ltindia.com> wrote:
Yes both are disabled …
QNX is a RTOS and QNET is designed aiming something else rather than
networking alone, you cant expect security in QNET …You refer QNET
documentation to convince yourself (As i did previously)
Well, as said, QNET is aiming for extand message passing cross network.
The auto-started QNET is limited to “Only allow nodes on LAN seeing
each other”. It assuming all nodes on same LAN are friends 
-xtang
Regards
Manigandan
“Jim Lambert” <> jlambert@futurex.com> > wrote in message
news:a4f3sc$58s$> 1@inn.qnx.com> …
If I do the rc.local thing and umount the io-net driver for qnet, will
this
just disallow me from seeing others or will it disallow others from seeing
me as well?
Jim
“David Rempel” <> drempel@qnx.com> > wrote in message
news:a4bkc3$bkq$> 1@nntp.qnx.com> …
The enumerators are starting it for you automatically. You’ve got two
options, find the entry in the enumerator file and remove it, or create
an
/etc/rc.d/rc.local (make sure it has execute permissions) that does
a umount /dev/io-net/qnet0 (that will unmount qnet).
– drempel
PS: Don’t tell me what a security hole this “feature” is, I already
know,
but can’t do anything about it.
Jim Lambert <> jlambert@futurex.com> > wrote:
Woah! I was doing a find today and a friend’s machine showed up under
my
/net directory. What gives with that? I could, as root, freely
traverse
his machine without him a, knowing it, and b, giving me permission to
do
this. I never set up any type of shared system between our two
computers so
was shocked that this had been set up for me. How is this happening
and
why
does it do it by default?
I need to know how to disable it or not have it installed at install
time.
Was it some package I installed?
TIA,
Jim
\
“Xiaodan Tang” <xtang@qnx.com> wrote in message
news:a4fg3s$7jn$2@nntp.qnx.com…
Manigandan Varadharajan <> vm@myw.ltindia.com> > wrote:
Yes both are disabled …
QNX is a RTOS and QNET is designed aiming something else rather than
networking alone, you cant expect security in QNET …You refer QNET
documentation to convince yourself (As i did previously)
Well, as said, QNET is aiming for extand message passing cross network.
The auto-started QNET is limited to “Only allow nodes on LAN seeing
each other”. It assuming all nodes on same LAN are friends >
I get it, I thought, but . . . .
With QNX4 there could be several QNX4 networks on the same physical house
lan. All nodes in one network would have their own MAC addresses in their
own netmaps and no others. All nodes of the other network would have those
MACs in their netmap files and the two networks would not see each other
even though they were on the same wire.
Is there a corrisponding method of saying, for instance, hosts that aren’t
in my /etc/hosts file will not be recognized as other QNET hosts (but still
may be recognized as tcp/ip hosts since tcp/ip has it’s own security)?
–
Bill Caroselli – 1(626) 824-7983
Q-TPS Consulting
QTPS@EarthLink.net