Bugtraq mailing list archives
Re: HP automountd security bulletin
From: Valdis.Kletnieks () VT EDU (Valdis.Kletnieks () VT EDU)
Date: Wed, 27 Oct 1999 09:54:40 -0400
On Tue, 26 Oct 1999 00:03:40 EDT, Bennett Todd <bet () MORDOR NET> said:
of a worry. So use ipchains on Linux or ipfilter on most anything, and set up the host to block all but select, chosen protocols at its interfaces.
This, of course, assumes that you don't ever intend to run NFS.
And if the machine was *running* the automounter, there's only 2
explanations:
1) It was started by default and the machine was never tightened down.
2) There is actually a desire to use NFS.
Unless you have an ipchains or ipfilter that's smart enough to
reject based on the RPC procedure number, you're stuck.
Valdis Kletnieks
Operating Systems Analyst
Virginia Tech
Current thread:
- Re: CERT Advisory CA-99.13 - Multiple Vulnerabilities in WU-FTPD Rami Dass (Oct 21)
- HP automountd security bulletin dsiebert () ENGINEERING UIOWA EDU (Oct 22)
- Re: HP automountd security bulletin Bennett Todd (Oct 25)
- Re: HP automountd security bulletin Valdis.Kletnieks () VT EDU (Oct 27)
- Re: HP automountd security bulletin Byron Miller (Oct 27)
- Re: HP automountd security bulletin Bennett Todd (Oct 25)
- Re: CERT Advisory CA-99.13 - Multiple Vulnerabilities in WU-FTPD Gregory A Lundberg (Oct 22)
- Re: CERT Advisory CA-99.13 - Multiple Vulnerabilities in WU-FTPD Charles M. Richmond (Oct 26)
- [slackware-security] CA-99-13: wu-ftpd upgrade available (fwd) Rafael Rodrigues Obelheiro (Oct 23)
- RFP9905: Zeus webserver remote root compromise .rain.forest.puppy. (Oct 25)
- HP automountd security bulletin dsiebert () ENGINEERING UIOWA EDU (Oct 22)