Re: How vulnerable is RPC (port 1025) on Linux?
From: David Magda (dmagda+trace040423_at_ee.ryerson.ca)
Date: 06/23/04
- Previous message: Larry: "using secure ftp with a pipe ?"
- In reply to: Joshua Davies: "How vulnerable is RPC (port 1025) on Linux?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 23 Jun 2004 11:21:34 -0400
jdaviestx@comcast.net (Joshua Davies) writes:
[...]
> most port 1025 vulnerabilities are related to Microsoft's DCOM
> protocol, which I'm obviously not using... are there any other
> known RPC vulnerabilities? Any known worms that try to replicate
> on port 1025?
There are no publicly disclosed vulnerabilities at this time. (Any
old issues (if they exist) should be fixed.)
That being said, there is always the possibility of issues in the
future. As a general rule: if you don't need a service, disable
it. Your system cannot be broken into if there are no ways in.
-- David Magda <dmagda at ee.ryerson.ca>, http://www.magda.ca/ Because the innovator has for enemies all those who have done well under the old conditions, and lukewarm defenders in those who may do well under the new. -- Niccolo Machiavelli, _The Prince_, Chapter VI
- Previous message: Larry: "using secure ftp with a pipe ?"
- In reply to: Joshua Davies: "How vulnerable is RPC (port 1025) on Linux?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
