GlusterFS
aka gluster
Distributed network filesystem on 24007 (+ per-brick 49152+). Default deployments allow unauthenticated management — list volumes and mount them directly to read the cluster's data.
Ports
| Port | Proto | Notes |
|---|---|---|
24007 | tcp | GlusterFS daemon (management) |
49152 | tcp | brick port (per volume) |
Fingerprint
- gluster --remote-host returns volume info
- nmap -sV identifies glusterd on 24007
Key files
| Path | Holds | Sensitive |
|---|---|---|
Gluster volumes | the distributed data store | sensitive |
Exploitation primitives
- No auth by default → `gluster volume info` from a remote host
- Mount a volume and read everything on it
- Version mismatch sometimes needed; match your client to the server
Overview
GlusterFS on 24007 aggregates storage across nodes. Default installs trust any client, so you can list and mount volumes without credentials.
Enumeration
List volumes from your box:
gluster --remote-host=<TARGET> volume infonmap:
nmap -p24007,49152 -sV <TARGET>Mount and read
sudo mount -t glusterfs <TARGET>:/<volume> /mntHardening
Set auth.allow to trusted IPs, enable TLS/management encryption, and firewall 24007 + brick ports.