From owner-freebsd-stable@FreeBSD.ORG  Fri Jan  6 09:40:31 2006
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@freebsd.org
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0DC6A16A41F
	for <freebsd-stable@freebsd.org>; Fri,  6 Jan 2006 09:40:31 +0000 (GMT)
	(envelope-from james_mapson@umpquanet.com)
Received: from ns.museum.rain.com (gw-ipinc.museum.rain.com [65.75.192.74])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8D5A543D45
	for <freebsd-stable@freebsd.org>; Fri,  6 Jan 2006 09:40:30 +0000 (GMT)
	(envelope-from james_mapson@umpquanet.com)
Received: from ns.museum.rain.com (localhost [127.0.0.1])
	by ns.museum.rain.com (8.13.4/8.13.4) with ESMTP id k069eP2S043897
	(version=TLSv1/SSLv3 cipher=DHE-DSS-AES256-SHA bits=256 verify=NO);
	Fri, 6 Jan 2006 01:40:25 -0800 (PST)
	(envelope-from james@umpquanet.com)
Received: (from james@localhost)
	by ns.museum.rain.com (8.13.4/8.13.4/Submit) id k069eOXo043893;
	Fri, 6 Jan 2006 01:40:24 -0800 (PST) (envelope-from james)
Date: Fri, 6 Jan 2006 01:40:24 -0800
From: James Long <stable@museum.rain.com>
To: freebsd-stable@freebsd.org
Message-ID: <20060106094024.GA43299@ns.museum.rain.com>
References: <20060106040839.A38DE16A46C@hub.freebsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20060106040839.A38DE16A46C@hub.freebsd.org>
User-Agent: Mutt/1.5.11
X-Spam-Status: No, score=-101.4 required=5.0 tests=ALL_TRUSTED,
	USER_IN_WHITELIST autolearn=failed version=3.1.0
X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on ns.museum.rain.com
Cc: Vivek Khera <vivek@khera.org>
Subject: Re: rpcbind lingering on IP no longer specified on command line
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Jan 2006 09:40:31 -0000

> Date: Thu, 5 Jan 2006 10:31:33 -0500
> From: Vivek Khera <vivek@khera.org>
> Subject: Re: rpcbind lingering on IP no longer specified on command
> 	line
> To: stable@freebsd.org
> Message-ID: <51DD97C7-4002-4459-A709-1B72DC1189A7@khera.org>
> Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
> 
> 
> On Jan 5, 2006, at 6:06 AM, Gavin Atkinson wrote:
> 
> >> Can anyone explain why rpcbind will still bind to all tcp interfaces?
> >
> > Although I believe this is a bug, it is actually working as  
> > documented:
> >
> > from rpcbind(8):
> >      -h bindip
> >              Specify specific IP addresses to bind to for UDP  
> > requests.
> 
> Yeah, I noticed that little tiny "UDP requests" note in the -h docs  
> too.  There's no reason to bind to all tcp addresses, and it is  
> causing me heartburn for getting the server certified...

Good grief, why not just firewall off the undesired UDP ports and call
it good?