In AFS3, the fileserver process ( fileserver or afs3-fileserver ) validates RXAFS_FetchData and RXAFS_StoreData RPC calls using a embedded in the request. Research (and real audits) show that:
Immediate Response Steps (if compromise suspected) afs3-fileserver exploit
: Automatically log and alert on the use of weak security objects in communications to prevent attackers from injecting unauthorized commands. 2. Protocol Vulnerability Patching (CVE-2021-47366) In AFS3, the fileserver process ( fileserver or
Restrict the ability to modify ACLs to trusted administrative users only to prevent the most common attack vector. OpenAFS Security Advisories 12 Nov 2024 — afs3-fileserver exploit
where possible) to prevent credential sniffing and session hijacking.
The AFS3 Fileserver Exploit: When a 35-Year-Old File System Has a Meltdown
