On the importance of using connAuthFile in BeeGFS

10th May 2022 Yesterday, we were alerted to a conversation on Twitter about potential security issues with BeeGFS on systems that don't use a connAuthFile. If no such file is used to authenticate connections between nodes, it is possible to spoof network messages to BeeGFS servers which can be used to trigger file system operations. The code that is being discussed on Twitter uses that to create a setuid file, which can then later be used to gain root privileges on a connected client. We are aware of this issue and have always been advising our users to use connAuthFiles Read More

BeeGFS Data Management

by Peter Braam, CTO, ThinkParQ, January 2021 Welcome to the BeeGFS blog.  I intend to occasionally publish some of our architectural thoughts, specifically to solicit feedback, publicly in blog comments or on our mailing list. Alternatively you can send an email to cto <at> thinkparq <dot> com. Probably we’ll find that posts here will be most useful during our early consideration of features, and perhaps there will be 2-4 posts per year. Read More