Re: HP automountd security bulletin

From: Valdis.Kletnieksat_private
Date: Wed Oct 27 1999 - 06:54:40 PDT

Next message: Peter W: "Re: Linux kernel source problem"

Previous message: Wietse Venema: "Re: Fix for ssh-1.2.27 symlink/bind problem"
Maybe in reply to: dsiebertat_private: "HP automountd security bulletin"
Next in thread: Byron Miller: "Re: HP automountd security bulletin"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 26 Oct 1999 00:03:40 EDT, Bennett Todd <betat_private>  said:
> of a worry. So use ipchains on Linux or ipfilter on most anything, and set up
> the host to block all but select, chosen protocols at its interfaces.

This, of course, assumes that you don't ever intend to run NFS.

And if the machine was *running* the automounter, there's only 2
explanations:

1) It was started by default and the machine was never tightened down.
2) There is actually a desire to use NFS.

Unless you have an ipchains or ipfilter that's smart enough to
reject based on the RPC procedure number, you're stuck.

				Valdis Kletnieks
				Operating Systems Analyst
				Virginia Tech

Next message: Peter W: "Re: Linux kernel source problem"
Previous message: Wietse Venema: "Re: Fix for ssh-1.2.27 symlink/bind problem"
Maybe in reply to: dsiebertat_private: "HP automountd security bulletin"
Next in thread: Byron Miller: "Re: HP automountd security bulletin"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:08:53 PDT