Bugtraq mailing list archives
Re: HACMP and port scans
From: "Alex Polli" <apolli () pucrs br>
Date: Tue, 25 Sep 2001 08:36:12 -0300
Yes, I've faced this. In fact, the tcp connect() function, when applied to certain HACMP ports causes the system to shut down that node. However, if you make a SYN scan it won't happen. IBM has given us no workaround, so we deployed a firewall in front of the cluster machine, dropping packets to the HACMP ports. Another gift from IBM to you. ----- Original Message ----- From: "Eoin D. Fleming" <rtfm () eircom net> To: <bugtraq () securityfocus com> Sent: Monday, September 24, 2001 6:27 PM Subject: HACMP and port scans
It appears that IBM's HACMP 4.4 clustering software can be induced to fail simply by port scanning clustered machines, has anyone come accross this vulnerability and is there a workaround? Thanks, RT
Current thread:
- HACMP and port scans Eoin D. Fleming (Sep 24)
- Re: HACMP and port scans Alex Polli (Sep 25)
- Re: HACMP and port scans Andreas Siegert (Sep 26)
- Re: HACMP and port scans Andrew Leonard (Sep 25)
- Re: HACMP and port scans Jordan Klein (Sep 26)
- <Possible follow-ups>
- RE: HACMP and port scans Ali, Farrad (Sep 25)
- RE: HACMP and port scans Steven Bishop (Sep 28)
- Re: HACMP and port scans Alex Polli (Sep 25)