PARTIAL Need a secure 'portmap' daemon - NIS security questions...
2007-12-25 9:19:00
had a patch to address this (100482) for OSes up through 4.1.3. They
applied this patch to 4.1.3_U1 (along with many others) and it solved my
problem. You basically have to create a file called /var/yp/securenets with
one or more lines of the format
netmask netaddr
e.g.
255.255.0.0 128.30.0.0
255.255.255.0 128.311.10.0
The second example allows ypserv to respond only to those addresses within
the subnet 128.311.10 range. You can have as many as you need ( as far as
I know ).
One additional question is raised by this: is it possible to address only
one machine out of a subnet with this procedure? It would help me quite a
bit if it were possible. Any suggestions are welcome!
More when I know more,
Joel L. Seber | Dry humor is wasted around here.
Sun Workstation Laboratory Manager | -Joel L. Seber
Center for Manufacturing Research |
and Technology Utilization | recursive, adj.
Tennessee Technological University | See 'recursive'
Box 5077 Brown Hall |
Cookeville, TN 38505 | What if there were no hypothetical
jls2013@tntech.edu | situations? -Steven Wright
more info: |
finger jls2013@gemini.tntech.edu | Who, me? -Alfred E. Newman
|
| "It is bad luck to be superstitious."
| -- Andrew W. Mathis
Comments
Got something to say?
You must be logged in to post a comment.
