Re: HACMP and port scans
From: Alex Polli (apolli@pucrs.br)Date: 09/25/01
- Previous message: Paul Starzetz: "Re: twlc advisory: all versions of php nuke are vulnerable..."
- In reply to: Eoin D. Fleming: "HACMP and port scans"
- Next in thread: Andreas Siegert: "Re: HACMP and port scans"
- Next in thread: Ali, Farrad: "RE: HACMP and port scans"
- Reply: Andreas Siegert: "Re: HACMP and port scans"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <000701c145b6$4793d680$0c0d84c8@w118227> From: "Alex Polli" <apolli@pucrs.br> To: "Eoin D. Fleming" <rtfm@eircom.net> Subject: Re: HACMP and port scans Date: Tue, 25 Sep 2001 08:36:12 -0300
Yes, I've faced this. In fact, the tcp connect() function, when applied to
certain HACMP ports causes the system to shut down that node. However, if
you make a SYN scan it won't happen.
IBM has given us no workaround, so we deployed a firewall in front of the
cluster machine, dropping packets to the HACMP ports.
Another gift from IBM to you.
----- Original Message -----
From: "Eoin D. Fleming" <rtfm@eircom.net>
To: <bugtraq@securityfocus.com>
Sent: Monday, September 24, 2001 6:27 PM
Subject: HACMP and port scans
> It appears that IBM's HACMP 4.4 clustering software can be induced to fail
> simply by port scanning clustered machines, has anyone come accross this
> vulnerability and is there a workaround?
>
> Thanks,
> RT
>
>
- Previous message: Paul Starzetz: "Re: twlc advisory: all versions of php nuke are vulnerable..."
- In reply to: Eoin D. Fleming: "HACMP and port scans"
- Next in thread: Andreas Siegert: "Re: HACMP and port scans"
- Next in thread: Ali, Farrad: "RE: HACMP and port scans"
- Reply: Andreas Siegert: "Re: HACMP and port scans"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
