Bugtraq mailing list archives
Re: CERT, about NFS
From: jhawk () panix com (John Hawkinson)
Date: Wed, 21 Dec 1994 17:02:01 -0500 (EST)
From: der Mouse <mouse () Collatz McRCIM McGill EDU> Message-Id: <199412211532.KAA00835 () Collatz McRCIM McGill EDU>
Anyone know why these are recommended? As far as I can see, if your portmapper doesn't do proxy calls and/or you firewall out port 111, and you don't care about local attacks, neither C.1 nor C.2 will buy you anything further. Am I missing something, or are these bits of advice simply there for people who don't do A and B?
Correct; they're trying to cover their asses, and provide suggestions that don't fall aprt if you fail to follow all of them. Not that they do a good job, mind you... -- John Hawkinson jhawk () panix com
Current thread:
- CERT, about NFS der Mouse (Dec 21)
- Re: CERT, about NFS John Hawkinson (Dec 21)
- Re: CERT, about NFS Jim Duncan (Dec 21)
- Re: CERT, about NFS Scott Schwartz (Dec 21)
- Bugtraq reorganization notes Kevin at Freeside Support (Dec 21)
- Re: CERT, about NFS Leo Bicknell (Dec 22)
- Re: CERT, about NFS Oliver Friedrichs (Dec 22)
- (fwd) HP-UX 9.x: /usr/lib/expreserve creates files anywhere (fwd) Paul 'Shag' Walmsley (Dec 22)
- Re: CERT, about NFS Chris Ellwood (Dec 22)
- Re: CERT, about NFS Paul 'Shag' Walmsley (Dec 22)
- <Possible follow-ups>
- Re: CERT, about NFS Dave Mitchell (Dec 22)
- Re: CERT, about NFS Steinar Haug (Dec 22)
(Thread continues...)