Hidden RPC Services

Support for security such as Firewalls and securing linux
Post Reply
itannu
Posts: 19
Joined: 2021/05/28 14:10:05

Hidden RPC Services

Post by itannu » 2022/12/22 14:47:17

Hi,
We are seeing below vulnerability with our RHEl server.
Can you please let me know how to fix this vulnerability.
Is this something fixed at OS level or Network firewall level. Thank you for your help

Hidden RPC Services

Name Program Version Protocol Port
portmap/rpcbind 100000 2-4 tcp 111#

portmap/rpcbind 100000 2-4 tcp 111# - Solution - Firewalling the portmapper port or removing the portmapper service is not sufficient to prevent unauthorized us"
Firewalling the portmapper port or removing the portmapper service is not sufficient to prevent unauthorized users from accessing the RPC daemons. You should remove all RPC services that are not strictly required on this host.

BShT
Posts: 530
Joined: 2019/10/09 12:31:40

Re: Hidden RPC Services

Post by BShT » 2022/12/23 13:02:18

update your server and if you still find security holes at OS level, submit a bug

you can try to disable rpcbind and nfs related stuffs

Post Reply