Mailinglist Archive: opensuse-security (343 mails)

< Previous Next >
Re: [suse-security] scans to port 111
  • From: Gerd Bitzer <gerd.bitzer@xxxxxxxxx>
  • Date: Fri, 13 Jul 2001 09:06:16 +0200
  • Message-id: <3B4E9DE7.5A6E1AC3@xxxxxxxxx>
Hi,

maybe you should also have a look at
ftp://ftp.porcupine.org/pub/security/index.html, there is an RPC daemon which
supports ACL's, it's for Solaris, but maybe it also run's out of the box on Linux

Volker Kuhlmann wrote:

> > There are numerous vulnerabilities in rpc services and demons, such as
> > snmpXmid, rpc.statd and wu-ftpd, buffer overflows in various services, and so
> > on. Look at Cert's collection of the current cracker/kiddie activity on
> > http://www.cert.org/current/current_activity.html#scans . And keep your system
> > free of rpc.
>
> Let's say I have a home network of 3 computers, which share disks with
> NFS. What's the risk if all NFS-related ports are blocked on the firewall
> to the outside?
>
> There doesn't seem to be much of an alternative to NFS, or is it
> unreasonable to assume the internal net is trustworthy?
>
> Volker
>
> --
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx


< Previous Next >
References