HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: how do I secure the ypbind daemon
Operating System - HP-UX
1834394
Members
1972
Online
110066
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-20-2002 02:57 AM
03-20-2002 02:57 AM
how do I secure the ypbind daemon
A Intrusion report lists that ypbind is running over a non-reserved port. And it needs to be moved to a reserved ports to pass Intrusion tests.
It is a HP700 10.20. I have tried setting YPBIND_OPTIONS = "-s" in /etc/rc.config.d/namesvrs file on NIS Master
and Client. Both machines report error message
on startup of NIS
"Secure mode sunos 3.x servers rejected"
Can anyone help me configue this properly.
Regards
Mick
It is a HP700 10.20. I have tried setting YPBIND_OPTIONS = "-s" in /etc/rc.config.d/namesvrs file on NIS Master
and Client. Both machines report error message
on startup of NIS
"Secure mode sunos 3.x servers rejected"
Can anyone help me configue this properly.
Regards
Mick
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-20-2002 05:05 AM
03-20-2002 05:05 AM
Re: how do I secure the ypbind daemon
Mick,
From the man pages of ypbind:
The "-s" option:
"-s" Secure. When specified, only NIS servers bound to a reserved port are used. This allows for a slight increase in security in completely controlled environments, where there are no computers operated by untrusted individuals. It offers no real increase in security.
Get the security patch checker and see if there are any patches that may apply:
http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6834AA
live free or die
harry
From the man pages of ypbind:
The "-s" option:
"-s" Secure. When specified, only NIS servers bound to a reserved port are used. This allows for a slight increase in security in completely controlled environments, where there are no computers operated by untrusted individuals. It offers no real increase in security.
Get the security patch checker and see if there are any patches that may apply:
http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6834AA
live free or die
harry
Live Free or Die
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-20-2002 05:24 AM
03-20-2002 05:24 AM
Re: how do I secure the ypbind daemon
Hi,
check the file "/var/yp/secureservers"
See also,
man ypserv
-Vijay
check the file "/var/yp/secureservers"
See also,
man ypserv
-Vijay
"Let us fine tune our knowledge together"
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-20-2002 08:30 AM
03-20-2002 08:30 AM
Re: how do I secure the ypbind daemon
putting a couple of NIS servers in the file
/var/yp/secureservers has stopped the
sunos 3x error message . But it now fails
NIS client with the message
FAILURE code 1 after the ypbind daemon tries to start up in file /sbin/rc.d/S420nis.client
I have tried adding NIS clients to the
/var/yp/securenets file but I get NIS master FAILURE codes as well.
Hope this makes sense and help me further.
Is the format of the secureservers file
Subnet_mask IP_ADDRESS e.g.
255.255.252.0 137.229.234.20
255.255.252.0 137.229.237.21
Mick
/var/yp/secureservers has stopped the
sunos 3x error message . But it now fails
NIS client with the message
FAILURE code 1 after the ypbind daemon tries to start up in file /sbin/rc.d/S420nis.client
I have tried adding NIS clients to the
/var/yp/securenets file but I get NIS master FAILURE codes as well.
Hope this makes sense and help me further.
Is the format of the secureservers file
Subnet_mask IP_ADDRESS e.g.
255.255.252.0 137.229.234.20
255.255.252.0 137.229.237.21
Mick
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP