Firewall Wizards mailing list archives

Re: Disabling RPC on a Sun U-60

From: Bill_Royds () pch gc ca
Date: Wed, 19 Apr 2000 15:16:17 -0400

What may be happening is that there are remnants of the autofs (automatic mount)
File System around. This uses RPC because it can automount NFS files as well as
local files.  Ensure that you are not starting automountd as well as other RPC
daemons. The /home directory often has a lock set by automountd that causes
problems with RPC not running to unlock it.
Look at /etc/auto_master for file systems controlled by automountd.




Lance Spitzner <lance () spitzner net> on 12/04/2000 11:30:47 AM

Please respond to Lance Spitzner <lance () spitzner net>
                                                              
                                                              
                                                              
 To:      Alan Morewood <morewood () on bell ca>                 
                                                              
 cc:      firewall-wizards () nfr net(bcc: Bill                  
          Royds/HullOttawa/PCH/CA)                            
                                                              
                                                              
                                                              
 Subject: Re: [fw-wiz] Disabling RPC on a Sun U-60            
                                                              





On Mon, 10 Apr 2000, Alan Morewood wrote:

Replace the user shell with bash or tcsh.  The login process with
the default Solaris shells interacts with RPC (although honestly
I do not know what this interaction involves).


Actually, I am confused by this statement.  I run almost all my
Solaris boxes with RPC disabled, and have never had an issue the
default Solaris shells.  I have had problems with CDE or OpenWin
when RPC is disabled, but I normally have that ripped out to :)

To the best of my knowledge and experience, RPC does not interact with
the default Solaris shell.  As for the issues discusses below,
TCP services often hang when there are DNS issues.

Our security admin has had repeated problems with disabling RPC on Sun
Ultra-60's running Solaris 2.6.  After disabling it, he says telnet and
some other tcp services start hanging.

Does anyone have any idea why?  The services are all running through inetd
and without TCP Wrappers (yet).  I don't recall ever seeing that before
but he says every U-60 he's used has done that.


Lance Spitzner
http://www.enteract.com/~lspitz/papers.html

Current thread:

Disabling RPC on a Sun U-60 Nicholas Tang (Apr 10)
- Re: Disabling RPC on a Sun U-60 Alan Morewood (Apr 11)
  - Re: Disabling RPC on a Sun U-60 Lance Spitzner (Apr 18)
- Re: Disabling RPC on a Sun U-60 Paul Cardon (Apr 13)
- RE: Disabling RPC on a Sun U-60 Dom De Vitto (Apr 13)
  - RE: Disabling RPC on a Sun U-60 Marcus J. Ranum (Apr 13)
- Re: Disabling RPC on a Sun U-60 Chuck Swiger (Apr 13)
- <Possible follow-ups>
- Re: Disabling RPC on a Sun U-60 Bill_Royds (Apr 20)