[624] in linux-security and linux-alert archive
Re: [linux-security] BoS: announcing ypghost (fwd)
daemon@ATHENA.MIT.EDU (Cy Schubert - BCSC Open Systems Gr)
Mon Mar 4 17:33:00 1996
From: Cy Schubert - BCSC Open Systems Group <cschuber@uumail.gov.bc.ca>
Reply-to: cschuber@orca.gov.bc.ca
To: okir@monad.swb.de (Olaf Kirch)
cc: linux-security@tarsier.cv.nrao.edu
In-reply-to: Your message of "Sun, 03 Mar 96 19:15:00 +0700."
<m0ttIJi-000HRpC@monad.swb.de>
Date: Mon, 04 Mar 96 08:05:22 -0800
[Mod: Quoting trimmed. --Jeff.]
> As a a stopgap measure, you may want to try and disable YP over UDP to
> force use of TCP. You either have to patch ypserv for this, or make do
> with pmap_dump/pmap_set from Wietse Venema's secure portmapper distribution:
> Dump the current portmapper settings to a file with pmap_dump, delete
> the ypserv/udp line, restart the portmapper, and pipe the changed
> portmapper settings to pmap_set.
One could use the IP Firewalling code in the kernel as well/instead.
Regards, Phone: (604)389-3827
Cy Schubert OV/VM: BCSC02(CSCHUBER)
Open Systems Support BITNET: CSCHUBER@BCSC02.BITNET
BC Systems Corp. Internet: cschuber@uumail.gov.bc.ca
cschuber@bcsc02.gov.bc.ca
"Quit spooling around, JES do it."
