[ale] NFS Issue
Bob's ALE Mail
transam at cavu.com
Mon Feb 5 17:42:40 EST 2001
Do be aware that NFS (and the related services) have LOTS of severe
security problems. Generally, all NFS clients and servers should not be
accessible from the Internet or untrusted or large internal networks.
Crackers try NFS attacks (mostly against portmap on TCP port 111) against
me (and most of you) several times a week. Blocking this port and all of
the other ones (NFS itself normally is UDP port 2049) at your firewall
should be the first step and mandatory.
Bob Toxen
transam at cavu.com [Bob's ALE Bulk email]
bob at cavu.com
http://www.cavu.com
http://www.realworldlinuxsecurity.com/ [My new book: Real World Linux Security]
http://www.cavu.com/sunset.html [Sunset Computer]
Fly-By-Day Consulting, Inc. "Don't go with a fly-by-night outfit!"
Quality Linux & UNIX security and software consulting since 1990.
--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.
More information about the Ale
mailing list