From owner-freebsd-security@FreeBSD.ORG Wed Jul 30 10:46:11 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 322FD37B401 for ; Wed, 30 Jul 2003 10:46:11 -0700 (PDT) Received: from ptserver.progtech.net (pD9E8B6DB.dip.t-dialin.net [217.232.182.219]) by mx1.FreeBSD.org (Postfix) with ESMTP id D0F9F43FAF for ; Wed, 30 Jul 2003 10:46:08 -0700 (PDT) (envelope-from rg@progtech.net) Received: from PROGTECH.net (isis.muc.progtech.intern [10.25.0.100]) by ptserver.progtech.net (8.12.9/8.12.3) with ESMTP id h6UHk7Xo090754; Wed, 30 Jul 2003 19:46:07 +0200 (CEST) (envelope-from rg@PROGTECH.net) Message-ID: <3F28044D.9000702@PROGTECH.net> Date: Wed, 30 Jul 2003 19:45:49 +0200 From: Rolf Grossmann User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.4b) Gecko/20030522 X-Accept-Language: en,German [de] MIME-Version: 1.0 To: Matthew George References: <20030730130919.E40074@localhost> In-Reply-To: <20030730130919.E40074@localhost> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: security@freebsd.org Subject: Re: portmap, bind(), and NIS X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Jul 2003 17:46:11 -0000 Hi, Matthew George wrote: >ypbind will attempt to find a server by issuing a broadcast rpc request to >the local network. When portmap is not bound to INADDR_ANY, it will not >reply to these requests. > What about the -S option to ypbind? That way it doesn't broadcast but use the given servers. It's what I was using when yp client and server were not on the same subnet. Rolf