Displaying 20 results from an estimated 700 matches similar to: "portmap messages under /var/log/messages"
2000 Jul 27
1
rh62 suid files
Hi,
I believe having less root setuid binaries on system is The Way ...
so:
Why does RH6.2 ships with /sbin/dump & /sbin/restore root setuid? These
are for sysadmins, not for regular users I hope.
Is /sbin/unix_chkpwd really used and what is it used for? I haven't find
anything about it in pam documentation.
Is it really necessary to ship /usr/bin/gpasswd and /usr/bin/newgrp? Does
2018 Sep 04
4
[Bug 1276] New: "icmpv6 code" test returns wrong data type.
https://bugzilla.netfilter.org/show_bug.cgi?id=1276
Bug ID: 1276
Summary: "icmpv6 code" test returns wrong data type.
Product: nftables
Version: unspecified
Hardware: x86_64
OS: Gentoo
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at
2016 Aug 27
2
Is it possible to block ipv6 auto configuration entering the tinc tunnel?
Hi
Im using tinc to bridge networks together. And im using ebtables to block dhcp traffic for ipv4 on each node in tinc. One of my nodes have recently began using ipv6. The isp is using auto configuration to give out ipv6 addresses. The problem is that every computer in my bridged network is getting ipv6 addresses from that node.
The other computers behind the other nodes have no use for ipv6
2017 Feb 22
2
Re: Is it possible to block ipv6 auto configuration entering the tinc tunnel?
Hi
thank you for looking in to this. I haven't tried it before now. I cant get it to work.
after running the commands you suggest I get this when I run ip6tables --list-rules
root at JOTVPN:~# ip6tables --list-rules
-P INPUT ACCEPT
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-A FORWARD -i vpn -p ipv6-icmp -m icmp6 --icmpv6-type 133 -j DROP
-A FORWARD -o vpn -p ipv6-icmp -m icmp6 --icmpv6-type 134 -j
2016 Jun 07
5
[Bug 1073] New: inet-service vs icmp conflict
https://bugzilla.netfilter.org/show_bug.cgi?id=1073
Bug ID: 1073
Summary: inet-service vs icmp conflict
Product: nftables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter:
2003 Jan 15
3
Mandrake 9.0 won''t ping ...
When installing Mandrake 9.0 with the higher security option you cannot
ping any of it interfaces, localhost (127.0.0.1) included.
All other connections to the system are fine, e.g. ssh, www, squid, etc.
"shorewall clear" doesn''t help.
Does anyone know how to turn this off for at least localhost and eth1??
Yours truly,
Ben
1998 Dec 15
1
portmap & tcpwrappers
I don't know if this is RedHat 5.1 specific, but be aware that the version
of portmap distributed is the enhanced (Wietse Venema) version. That's
great, except for two things. The first is documented, but easy to overlook:
"In order to avoid deadlocks, the portmap program does not attempt to look
up the remote host name or user name...The upshot of all this is that only
network
2004 Nov 26
6
Help! AllowPing not working
Sorry for the frantic nature of this message, but we need to allow pings on
our firewall so our ISP can test things. I''ve done this, and it still doesn''t
work: (I am now at v.2.0.10)
rules:
AllowPing net fw
AllowPing sls fw
show indicates some matches, so where are they?
Chain AllowPing (4 references)
pkts bytes target prot opt in out source
2010 Feb 03
2
cannot mount NFS share, portmap problems, what todo?
Hi all,
I want to map an NFS share from a remote server to a local CentOS 5.4
server, but have a problem with portmap:
root at mercury:[~]$ service portmap restart
pmap_getmaps rpc problem: RPC: Unable to receive; errno = Connection reset
by peer
Stopping portmap: [FAILED]
Starting portmap: [ OK ]
root at
2017 Feb 23
1
Re: Is it possible to block ipv6 auto configuration entering the tinc tunnel?
hi
It was not working when i applied the rules on the vpn card. But I wondered if maybe bridging of vpn and eth0 was messing this up. I thought it was enough to only apply it to the vpn card
root at JOTVPN:~# brctl show
bridge name bridge id STP enabled interfaces
bridge 8000.000c29638a7e no eth0
vpn
so I tried the
2003 Jul 30
1
portmap, bind(), and NIS
Greetings
I'm running an NIS server that I would very much *not* want to be
accessible on some of its interfaces. portmap can be instructed to bind
to specific addresses using the -h flag, but this seems to break ypbind.
ypbind will attempt to find a server by issuing a broadcast rpc request to
the local network. When portmap is not bound to INADDR_ANY, it will not
reply to these requests.
2008 Mar 27
2
portmap not answering
CentOS 5 updated, Xen host.
The portmap on this machine is somehow "stuck" and I can't figure out why.
I enabled it to be able to mount a remote nfs share. The first hurdle was
that "portmap" didn't appear in the chkconfig list, it was installed with
the initial packages but not added to chkconfig. Took me a while to figure
this out. Adding and starting it up is no
2020 Sep 23
6
[Bug 1468] New: [netdev] dropping ether type vlan frames drops ICMPv6 type 134
https://bugzilla.netfilter.org/show_bug.cgi?id=1468
Bug ID: 1468
Summary: [netdev] dropping ether type vlan frames drops ICMPv6
type 134
Product: nftables
Version: unspecified
Hardware: other
OS: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P5
Component:
2008 Apr 29
2
Do I need portmap, haldeamon & xfs running on dom0?
Hi all
I have a CentOS 5.1 server running Xen and recently installed
ConfigServer Firewall (CSF) on the main node to give it some protection.
On a daily basis I''m getting an email about portmap. haldeamon and xfs
consumming too much resources. The main node, dom0 doesn''t even do
anything, and everything is done on the domU''s
Here''s a thread I''ve
2004 Jun 17
0
portmap spoofing in nfsmount
Hi all,
I have implemented portmap spoofing in klibc nfsmount (released as
klibc-0.144) This is basically a vestigial portmap daemon which gets
launched before the mount() call and then just records any transactions
it gets to a file and sends back an affirmative reply.
There are two ways to use it (this belongs in a README file, but it's
too late at night right now):
a) Set a fixed
2006 Aug 25
1
SELinux targeted - named, portmap and syslogd errors
Yesterday I activated SELinux in targeted mode, then I rebooted and started
receiving some error messages in the system services initialization:
======================================================================
audit(1156518721.252:2): avc: denied { read } for pid=2223 comm="syslogd"
name="libc-2.3.4.so" dev=dm-0 ino=50441 scontext=user_u:system_r:syslogd_t
2009 Jan 09
5
[Bug 567] New: Local multicast ICMPv6 and --state INVALID
http://bugzilla.netfilter.org/show_bug.cgi?id=567
Summary: Local multicast ICMPv6 and --state INVALID
Product: netfilter/iptables
Version: linux-2.6.x
Platform: All
OS/Version: Ubuntu
Status: NEW
Severity: blocker
Priority: P1
Component: unknown
AssignedTo: laforge at netfilter.org
2008 Jul 24
1
selinux & httpd & portmap
Having problems starting httpd & portmapper
#service httpd start
/usr/sbin/httpd: error while loading shared libraries: libm.so.6: cannot
open shared object file: No such file or directory
and I traced it to selinux, which I had just turned on for the first time:
# sestatus
SELinux status: enabled
SELinuxfs mount: /selinux
Current mode:
2008 Feb 13
1
Linux client cannot mount to NFS-Root: Portmap RPC call returned error 101
Hello all,
I have seen various reports on this error posted in the past few
years, but was unable to find a resolution to the various postings.
I've googled the error messages too, and have hit on various sporadic
similar problems encountered with no resolutions ..
Apologize if this has been exhaustively queried upon in the past;
however, I'd like to try asking again, nevertheless:
2010 Feb 03
0
cannot mount NFS share, portmap problems, what todo? [SOLVED]
On Wed, Feb 3, 2010 at 2:40 PM, Geoff Galitz <geoff at galitz.org> wrote:
>
>
> > Should it be running, or not?
>
>
>
>
>
> >root at mercury:[~]$ netstat -ap --inet | grep rpc
>
> >tcp 0 0 *:sunrpc *:*
> LISTEN 6458/portsentry
>
> >udp 0 0 localhost:filenet-rpc localhost:filenet-rpc