[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] Re: Still Unable to turn off NFS
- Subject: [cobalt-security] Re: Still Unable to turn off NFS
- From: Rod <rodd_todd_1999@xxxxxxxxx>
- Date: Mon, 13 Nov 2000 10:35:43 -0800 (PST)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
>Use the FW filters to turn off that port? If the
>>>>>>>packets cannot get to the port, the service
will not be >doing anything.
NFS is a connectionless and stateless protocol
according to O'reilly, and NFS servers normally don't
use predictable port numbers.
When we do:
/usr/sbin/rpc.nfsd --version or
/usr/sbin/showmount --version
we get:
Universal NFS Server 2.2beta37
When we do a /etc/rc.d/init.d/nfs status we get:
rpc.mountd is stopped
rpc.nfsd is stopped
By issuing the command it looks like it just stopped,
just like when you stop ssh and such.
When we do a vi /usr/sbin/exportfs we get:
#!/bin/sh
usage () {
echo "usage: exportfs [-a]"
exit 1
}
help() {
echo "exportfs: tells NFS server to reread
configuration files. -a is supported"
echo "for backward compatibility"
exit 1
}
while [ $# -gt 0 ]; do
case $1 in
-a)
;;
--help)
help
;;
*)
usage
;;
esac
shift
done
killall -HUP rpc.nfsd
killall -HUP rpc.mountd
So I am not sure when NFS is started and how to stop
it since it still shows up doing ps aux | grep nfs.
Anyone have a firewall fix or remove NFS on their
servers?
Cheers,
=====
--
-R
__________________________________________________
Do You Yahoo!?
Yahoo! Calendar - Get organized for the holidays!
http://calendar.yahoo.com/