Marco Sinhoreli created CLOUDSTACK-10378:
--------------------------------------------
Summary: udp port 111 (rpcbind) is exposed in the public interface
on SSVM
Key: CLOUDSTACK-10378
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-10378
Project: CloudStack
Issue Type: Bug
Security Level: Public (Anyone can view this level - this is the default.)
Components: SystemVM
Affects Versions: 4.11.0.0
Reporter: Marco Sinhoreli
If you expose the RPC/portmap udp port 111 service to the internet, everybody
can query this information without having to authenticate. It can be useful to
attackers to know what you have running.
Also, the RPC service has a history of security vulnerabilities.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
