Date: Thu, 30 Aug 2001 16:14:28 -0400 From: Garance A Drosihn <drosih@rpi.edu> To: Rob Simmons <rsimmons@wlcg.com>, <freebsd-security@FreeBSD.ORG> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-01:58.lpd Message-ID: <p05101002b7b44cbd3f34@[128.113.24.47]> In-Reply-To: <20010830153246.K69164-100000@mail.wlcg.com> References: <20010830153246.K69164-100000@mail.wlcg.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 3:33 PM -0400 8/30/01, Rob Simmons wrote: > >I'm assuming that running lpd with -p to prevent it from opening a >port is also safe? I didn't see that mentioned in the advisory. > >Robert Simmons >Systems Administrator That would be a quick workaround to prevent any remote attacks. It of course means that you won't be accepting jobs from any remote hosts, even if they are listed in /etc/hosts.lpd . Note, however, that '-p' is fairly recent [July 2000], so this workaround would not be available to any older releases. I think that option first showed up in 4.1-RELEASE. -- Garance Alistair Drosehn = gad@eclipse.acs.rpi.edu Senior Systems Programmer or gad@freebsd.org Rensselaer Polytechnic Institute or drosih@rpi.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?p05101002b7b44cbd3f34>