[554] in bugtraq
Re: CERT, about NFS
daemon@ATHENA.MIT.EDU (John Hawkinson)
Wed Dec 21 19:50:43 1994
From: John Hawkinson <jhawk@panix.com>
To: mouse@Collatz.McRCIM.McGill.EDU (der Mouse)
Date: Wed, 21 Dec 1994 17:02:01 -0500 (EST)
Cc: bugtraq@fc.net
In-Reply-To: <199412211532.KAA00835@Collatz.McRCIM.McGill.EDU> from "der Mouse" at Dec 21, 94 10:32:05 am
> From: der Mouse <mouse@Collatz.McRCIM.McGill.EDU>
> Message-Id: <199412211532.KAA00835@Collatz.McRCIM.McGill.EDU>
> Anyone know why these are recommended? As far as I can see, if your
> portmapper doesn't do proxy calls and/or you firewall out port 111, and
> you don't care about local attacks, neither C.1 nor C.2 will buy you
> anything further. Am I missing something, or are these bits of advice
> simply there for people who don't do A and B?
Correct; they're trying to cover their asses, and provide suggestions
that don't fall aprt if you fail to follow all of them. Not that they
do a good job, mind you...
--
John Hawkinson
jhawk@panix.com
