A followup to my earlier posting concerning a secure portmap daemon: Sun
had a patch to address this (100482) for OSes up through 4.1.3. They
applied this patch to 4.1.3_U1 (along with many others) and it solved my
problem. You basically have to create a file called /var/yp/securenets with
one or more lines of the format
netmask netaddr
e.g.
255.255.0.0 128.30.0.0
255.255.255.0 128.311.10.0
The second example allows ypserv to respond only to those addresses within
the subnet 128.311.10 range. You can have as many as you need ( as far as
I know ).
One additional question is raised by this: is it possible to address only
one machine out of a subnet with this procedure? It would help me quite a
bit if it were possible. Any suggestions are welcome!
More when I know more,
Joel L. Seber | Dry humor is wasted around here.
Sun Workstation Laboratory Manager | -Joel L. Seber
Center for Manufacturing Research |
and Technology Utilization | recursive, adj.
Tennessee Technological University | See 'recursive'
Box 5077 Brown Hall |
Cookeville, TN 38505 | What if there were no hypothetical
jls2013@tntech.edu | situations? -Steven Wright
more info: |
finger jls2013@gemini.tntech.edu | Who, me? -Alfred E. Newman
|
| "It is bad luck to be superstitious."
| -- Andrew W. Mathis
This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:10:52 CDT