Date: Fri, 23 May 2003 16:01:35 +0300
To: hp-list <hpux-admin@dutchworks.nl>
Hi Admins'
I couldn't get an answer from list and also from ITRC about the rpc.mount to be worked on reserved
ports. In my 10.20 nfs servers, rpc.mountd is running on reserved ports. (btw, what differs if this daemon
works on reserved port??) .
I have one more question about an nfs bug. In the ISS scan (again), there is a bug says :
NFS mountable using Ultrix remount bug. An attacker can access NFS exports qithout being in the access list.
Any ideas ?
--
---> Please post QUESTIONS and SUMMARIES only!! <---
To subscribe/unsubscribe to this list, contact majordomo@dutchworks.nl
Name: hpux-admin@dutchworks.nl Owner: owner-hpux-admin@dutchworks.nl
Archives: ftp.dutchworks.nl:/pub/digests/hpux-admin (FTP, browse only)
http://www.dutchworks.nl/htbin/hpsysadmin (Web, browse & search)
Re: [SLE] NFS with SuSEfirewall2 ... >swich off both firewalls.... I just need info which ports have to be open in addition ... >as nfs client, but it still does: it is not sufficient to switch off FW ... Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com ... (SuSE)
Re: [NFS] RE: [autofs] multiple servers per automount ... >>if something else is already using up some of the reserved UDP ports.... I then ran into the 800 limit in the RPC layer.... I was able to mount more than 2000 NFS filesystems simultaneously. ... >>be fixed by multiplexing multiple mounts on the same port. ... (Linux-Kernel)
Re: iptable in fc5 ...NFS requires more than just port 2049. ... In fact by default those other ports are not fixed, thus a problem to firewall well. ... # adjusted to use features supported by original Fedora Core 2 init scripts. ...service nfslock restart... (Fedora)
Re: Firewall problems with NFS ... to the GUI configuration interface not opening the firewall when I check the NFS protocol support. ... It seems to only allow use as an NFS client, since that worked fine when I tested it. ... Is there really no way to open the ports for NFS server other than by hand? ... No, you really don't to open the ports, Yes you do if you want to specify which machines get access to the port. ... (Fedora)
Re: NFS versus the firewall ... having with a file server i was attempting to access. ... The difficulty with nfs is that it uses a few auxiliary rpc services, ... which by default get started on a random port....ports, and open these ports in the firewall. ... (Fedora)
