[qmailtoaster] rpcbind

2019-03-19 Thread Leonardo Porto
Hi everyone, I received a security alert about Portmap service enabled on my server, I checked the daemon rpcbind was installed by Toaster, is it needed? I am thinking to get rid of it. Thanks. Leonardo.

Re: [qmailtoaster] rpcbind

2019-03-19 Thread Remo Mattei
you can use firewalld to block it by default it should not be open. Remo > On Tuesday, Mar 19, 2019 at 08:00, Leonardo Porto (mailto:leonardo.po...@iw.net.br)> wrote: > > Hi everyone, > > > I received a security alert about Portmap service enabled on my server, I > checked the daemon rpcbind wa

Re: [qmailtoaster] rpcbind

2019-03-19 Thread Leonardo Porto
Right, but if Toaster doesn't really use it and I don't use NFS or anything rpcbind is need for, it's an unnecessary daemon I would uninstall. Em 19/03/2019 12:03, Remo Mattei escreveu: you can use firewalld to block it by default it should not be open. Remo On Tuesday, Mar 19, 2019 at

Re: [qmailtoaster] rpcbind

2019-03-19 Thread Remo Mattei
I agree. Eric will be the person to go. Remo > On Tuesday, Mar 19, 2019 at 08:21, Leonardo Porto (mailto:leonardo.po...@iw.net.br)> wrote: > > Right, but if Toaster doesn't really use it and I don't use NFS or anything > rpcbind is need for, it's an unnecessary daemon I would uninstall. > > > >

RE: [qmailtoaster] rpcbind

2019-03-19 Thread Dan McAllister - QMT DNS
I personally disable portmap and all RPC services on my servers. Even NFS is now at v4 and uses TCP and well-known-ports, not the portmapper. I have no issues with QMT working in that environment. There are a HOST of other services that come in a startup CentOS 6 or CentOS 7 install – I ALWA

Re: [qmailtoaster] rpcbind

2019-03-19 Thread Eric Broch
It's not necessary and is for NFS backward compatibility. On 3/19/2019 9:00 AM, Leonardo Porto wrote: Hi everyone, I received a security alert about Portmap service enabled on my server, I checked the daemon rpcbind was installed by Toaster, is it needed? I am thinking to get rid of it. Tha

Re: [qmailtoaster] rpcbind

2019-03-19 Thread Eric Broch
I may have been using this for a BuildRequires...can't remember. On 3/19/2019 3:46 PM, Eric Broch wrote: It's not necessary and is for NFS backward compatibility. On 3/19/2019 9:00 AM, Leonardo Porto wrote: Hi everyone, I received a security alert about Portmap service enabled on my server

Re: [qmailtoaster] TLS issue how to fix it

2019-03-19 Thread Tommi Järvilehto
Ok, mine was not original anymore. I had updated these sometimes before. When trying to test the servers with the Qualys SSL test. Glad that you noticed this. On 13.3.2019 17:13, Peter Peltonen wrote: Replying to myself:yes at least for me everything worked ok after updating tlsserverciphers wi