| VID |
17056 |
| Severity |
20 |
| Port |
111 |
| Protocol |
TCP,UDP |
| Class |
RPC |
| Detailed Description |
The RPC ypxfrd service is running. The ypxfrd daemon is designed to significantly improve the efficiency of transferring NIS maps between hosts. The ypxfrd process registers with the RPC portmapper as program 100069.
* References:
http://www.iss.net/security_center/static/281.php
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/116&type=0&nav=sec.sba |
| Recommendation |
Disable the 'ypxfrd' rpc service if your network does not implement NIS or is small enough that map transfers do not have a serious impact on performance.
Solaris 10, Solaris 11, Enterprise Linux 6.4, CentOS 6.4, Fedora 19:
1. you become a root, and then stop the service like the following:
# rpcinfo -d [program num] [version num]
2. comment its entry by putting a # at the beginning of the line with 'ypxfrd' in /etc/rpc
3. # pkill -HUP (x)inetd |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
