Re: Security issues and LDM

currently we have a firewall and soon will be NAT'ing our weather server
here at COD... we have close everything allow what we want.  we just have
388 open to contact the outside world and 388 to contact us.  and have no
problems at all without the rpc.  thats 388 tcp and udp.  We'll see how
things go with NAT when we do get to that point.
-dave

On Tue, 15 May 2001, Jeff Wolfe wrote:


Hi folks,

I'm sure everyone is aware of the ever increasing number of worms and other 
security compromises that are happening on the 'net these days. The local 
security folks here want to put a blanket filter on our internet 
connection for inbound port 111. The idea is that by filtering port 111, they 
make it just a bit harder for the various miscreants to find vulnerable RPC 
services. 

I'm trying to understand what effects that will have on our LDM servers. I 
vaguely remember running ldm for a while without having the /etc/rpc file 
edited properly, but that was a long time ago. I'm thinking we'll be able to 
connect to other servers, but nobody will be able to connect to us.

Longer term, has anyone considered what will happen with LDM as firewalls, 
proxy servers and other security measures become more prevalent? RPC isn't the 
most firewall friendly protocol ever invented.


-JEff



-------------------------------------------------------------------------------
David B. Bukowski               |email (work):          bukowski@xxxxxxxxxxxxx
Network Analyst                 |email (personal):      davebb@xxxxxxxxxxxxx
College of Dupage               |pager:                 (630) 266-7775
Glen Ellyn, Illinois            |work phone:            (630) 942-2591
http://www.cod.edu/             |ICQ#:                  46516655
-------------------------------------------------------------------------------