Bugtraq mailing list archives

Re: RPC protocol problem?

From: econrad () bu edu (Eric Conrad)
Date: Thu, 25 Aug 1994 10:32:06 -0400 (EDT)

I don't know of any security problem in IRIX 4.X portmapper, perhaps in 5.2?


The IRIX 4.X portmapper is vulnerable, even with the 
/usr/etc/portmap.options stuff turned on.  Haven't check IRIX 5.X yet, 
but will soon.

So here are the options so far:

Workaround -- all OSes: stop machines exporting to themselves. 

Fixes:

SunOS 4.1.X: Wietse's portmapper
Ultrix:      Wietse's portmapper   
Solaris:     Wietse's rpcbind
IRIX 4.X:    ???
IRIX 5.X:    ???
AIX:         ???

Please email me with any additions to this list, or any porting info for 
getting Wietse's programs to compile under different OSes.  I will post a 
summary.

                             ...Eric

Current thread:

Re: RPC protocol problem?, (continued)
- - - Re: RPC protocol problem? jsz (Aug 24)
  - Re: RPC protocol problem? [patch for SGI systems] Steve Kotsopoulos (Aug 23)
  - Re: RPC protocol problem? [patch for Sun/Solaris systems] Luc Saccavini (Aug 24)
- Re: RPC protocol problem? Christopher Klaus (Aug 23)
- Re: RPC protocol problem? James W. Abendschan (Aug 23)
- Re: RPC protocol problem? der Mouse (Aug 24)
- Re: RPC protocol problem? prince of insufficient light (Aug 24)
- Re: RPC protocol problem? Eric Conrad (Aug 24)
  - Re: RPC protocol problem? jsz (Aug 24)
    - Re: RPC protocol problem? Rafi Sadowsky (Aug 24)
    - Re: RPC protocol problem? Eric Conrad (Aug 25)
    - Re: RPC protocol problem? Casper Dik (Aug 29)
    - Re: RPC protocol problem? Casper Dik (Aug 29)
  - Re: RPC protocol problem? Jukka Ukkonen (Aug 25)
    - Re: RPC protocol problem? Dave Goldberg (Aug 25)
- Re: RPC protocol problem? Dave Mitchell (Aug 25)
  - Re: RPC protocol problem? Peter Wemm (Aug 25)
    - Re: RPC protocol problem? Alexander Haiut (Aug 26)