On Fri, 2003-01-03 at 11:29, Ashley M. Kirchner wrote: > Gordon Messmer wrote: > > >Yep, that's an attempt. If you aren't running and NFS server on the > >box, turn off the "nfs" and "nfslock" services. If you aren't running a > >YP server or client, and are not using FAM on the box, then also turn > >off "sgi_fam" and "portmap". > > > Unfortunately, all of my servers depend on one another for NFS > and/or NIS. So I would probably have to look into using tcp_wrappers to > block unauthorized access. Now I just need to figure out how.
Set up ipchains/iptables rules such that: By default, access is blocked. Your trusted hosts (NFS and NIS peers) can access any port public hosts can access specific ports such as POP, IMAP, SMTP, HTTP -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
