[PATCH] Force mountd(8) to a specified port.
From: Bruce M Simpson (bms_at_spc.org)
Date: 03/02/04
- Previous message: Mike Silbersack: "Re: mbuf vulnerability"
- Next in thread: Bruce M Simpson: "[RELENG_4] Re: [PATCH] Force mountd(8) to a specified port."
- Reply: Bruce M Simpson: "[RELENG_4] Re: [PATCH] Force mountd(8) to a specified port."
- Reply: Darren Reed: "Re: [PATCH] Force mountd(8) to a specified port."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 2 Mar 2004 21:10:30 +0000 To: freebsd-security@FreeBSD.org
Hi all,
I have a requirement to run NFS read-only in an Internet-facing colocation
environment. I am not happy with packet filters alone around rpcbind, call
me paranoid, so I just spent the last few minutes cutting this patch.
As you are aware, RPC applications can be forced to listen on a known port
through the sin/sa argument to bindresvport[_sa](). Why several Linux
distributions have this feature yet none of the BSDs do is beyond me...
Please let me know your thoughts. If there are no valid objections I plan
to commit it.
Regards,
BMS
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- text/plain attachment: mountd-force-port.diff
- Previous message: Mike Silbersack: "Re: mbuf vulnerability"
- Next in thread: Bruce M Simpson: "[RELENG_4] Re: [PATCH] Force mountd(8) to a specified port."
- Reply: Bruce M Simpson: "[RELENG_4] Re: [PATCH] Force mountd(8) to a specified port."
- Reply: Darren Reed: "Re: [PATCH] Force mountd(8) to a specified port."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
