Hi, maybe you should also have a look at ftp://ftp.porcupine.org/pub/security/index.html, there is an RPC daemon which supports ACL's, it's for Solaris, but maybe it also run's out of the box on Linux Volker Kuhlmann wrote:
There are numerous vulnerabilities in rpc services and demons, such as snmpXmid, rpc.statd and wu-ftpd, buffer overflows in various services, and so on. Look at Cert's collection of the current cracker/kiddie activity on http://www.cert.org/current/current_activity.html#scans . And keep your system free of rpc.
Let's say I have a home network of 3 computers, which share disks with NFS. What's the risk if all NFS-related ports are blocked on the firewall to the outside?
There doesn't seem to be much of an alternative to NFS, or is it unreasonable to assume the internal net is trustworthy?
Volker
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com