[2101] in linux-security and linux-alert archive
[linux-security] Re: portmap vulnerability?
daemon@ATHENA.MIT.EDU (Wietse Venema)
Sun Dec 6 08:33:21 1998
To: osquigle@cs.uchicago.edu (Sam Quigley)
Date: Sun, 6 Dec 1998 07:57:31 -0500 (EST)
Cc: linux-security@redhat.com, BUGTRAQ@netspace.org
In-Reply-To: <o9u7lw6ywq9.fsf@yeenoghu.cs.uchicago.edu> from Sam Quigley at "Dec 5, 98 05:50:38 pm"
From: wietse@porcupine.org (Wietse Venema)
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com
Sam Quigley:
>
> Are there any known vulnerabilities in portmap (redhat's
> portmap-4.0-7b)? I've been receiving a lot of attempts to access the
> portmap port on some linuxppc machines I administer by various
> machines which clearly have no business with mine, and I wonder if
> this is an attempt to break in to my machines.
Reportedly, there's an automated tool that looks for vulnerable
RPC daemons.
The portmapper is a dictionary service. RPC daemons register with
the portmapper. That's how the attacker finds them.
Wietse
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null
