[Rule-list] What is sunrpc?

Ed Blackman rule-list at edgewood.to
Mon Jul 22 23:59:34 EEST 2002

Previous message: [Rule-list] What is sunrpc?
Next message: [Rule-list] What is sunrpc?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Jul 22, 2002 at 08:42:30PM +0200, Marco Fioretti wrote:
> 111/tcp    open        sunrpc                  
[...]
> Do you know what service this is, and if there is any reason to
> leave it open/running on a typical RULE box?

It's the RPC portmapper, necessary (as far as I know) for NFS and
possibly NIS/NIS+ (network yellow pages).  It definitely shouldn't be
open to the Internet, and probably shouldn't be running (I don't know
of any other programs that require it, but that doesn't mean there
aren't any) if you're not running an NFS server or NIS/NIS+.

A Google search for "port 111 sunrpc" turned up a bunch of links
explaining what it does, and what the vulnerabilities are.  The SANS
Institute puts buffer overflows in RPC services at the top of their
list of Unix vulnerabilities:
  http://www.sans.org/top20.htm#_Toc526136830

Ed
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
URL: <http://lists.hellug.gr/pipermail/rule-list/attachments/20020722/a81d7c60/attachment.pgp>

Previous message: [Rule-list] What is sunrpc?
Next message: [Rule-list] What is sunrpc?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This full static mirror of the Run Up to Date Linux Everywhere Project mailing list, originally hosted at http://lists.hellug.gr/mailman/listinfo/rule-list, is kept online by Free Software popularizer, researcher and trainer Marco Fioretti. To know how you can support this archive, and Marco's work in general, please click here