Re: New Linux worm crawls the web

To: debian-user@lists.debian.org
Subject: Re: New Linux worm crawls the web
From: Ron Johnson <ron.l.johnson@cox.net>
Date: Tue, 08 Nov 2005 23:40:50 -0600
Message-id: <[🔎] 1131514850.2987.3.camel@haggis.homelan>
In-reply-to: <[🔎] 20051108195018.GA23823@wasteland.homelinux.net>
References: <[🔎] 4370EEFE.5070504@sbcglobal.net> <[🔎] 20051108185151.GA6658@isw302> <[🔎] 20051108195018.GA23823@wasteland.homelinux.net>

On Tue, 2005-11-08 at 20:50 +0100, Jochen Schulz wrote:
> Realos:
> > > Mike McCarty wanted us to know:
> > 
> > >http://www.securityfocus.com/brief/38?ref=rss
> > >
> > 
> > I have rpc.statd and portmap running on my system. Are they vulnerable
> > to this security hole/worm?
> > 
> > As I do not use nfs on my debian server, doesn't it make sense to
> > disable both portmap and rpc.statd on my system?
> 
> If you don't need them, remove them. Or at least block access to them
> with the help of iptables.

Or, better yet, bind them to localhost or the internal eth device.

-- 
-----------------------------------------------------------------
Ron Johnson, Jr.
Jefferson, LA USA
PGP Key ID 8834C06B I prefer encrypted mail.

"Peace is not an absence of war, it is a virtue, a state of mind,
a disposition for benevolence, confidence, justice."
Baruch (Benedict de) Spinoza

Reply to:

References:
- New Linux worm crawls the web
  - From: Mike McCarty <mike.mccarty@sbcglobal.net>
- Re: New Linux worm crawls the web
  - From: Realos <realos@loftmail.com>
- Re: New Linux worm crawls the web
  - From: Jochen Schulz <ml@well-adjusted.de>

Prev by Date: Re: Solaris: The Most Advanced OS?
Next by Date: keyboard quit working after kde upgrade, testing
Previous by thread: Re: New Linux worm crawls the web
Next by thread: Re: New Linux worm crawls the web
Index(es):
- Date
- Thread