HPE Community
Operating System - HP-UX
1833983 Members
1789 Online
110063 Solutions
New Discussion

rpcbind DOS issue

 
SOLVED
Go to solution
David Nixon
Valued Contributor

‎10-21-2007 10:35 PM

‎10-21-2007 10:35 PM

rpcbind DOS issue

We have come across a DOS issue concerning
rpcbind on an HP-UX 11.11 server (PHNE_36168)
and a Fedora NFS client; running a particular
recent version of the Linux Kernel.

Basically lock requests cause rpcbind to core
dump. The appended debug trace illusrates.

Don't have software support, but if anyone wants to look into this issue I am happy to supply further details.

Dave.
0 Kudos
4 REPLIES 4
Steven E. Protter
Exalted Contributor

‎10-21-2007 11:44 PM

‎10-21-2007 11:44 PM

Re: rpcbind DOS issue

Shalom,

Not much useful data however:

1) Put in the last bi-annual patch set.
2) Check the ITRC security database http://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA&langcode=USENG&jumpid=in_SC-GEN__driverITRC&subtopic=itrc

If there is nothing on this, file a security report but you will be asked to provide much more than a log.
3) Run security_patch_check available in Bastille package and the patch database and deal with issues presented there.
4) Consider stopping the rpcbind service if you don't need. If its not running, it can't be abused.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Dave Olker
Neighborhood Moderator

‎10-22-2007 12:01 PM

‎10-22-2007 12:01 PM

Re: rpcbind DOS issue

Hi Dave,

Please contact me directly: dave.olker@hp.com.

Thanks,

Dave


I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
0 Kudos
Dave Olker
Neighborhood Moderator

‎10-23-2007 09:47 AM

‎10-23-2007 09:47 AM

Solution

Re: rpcbind DOS issue

Hi Dave,

Thanks for sending me the information. This is a known problem that we will be releasing a fix for in the next 11.11 and 11.23 ONC patches.

The 11.11 patch ID will be PHNE_37110 and it should be out in November.

Regards,

Dave


I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
0 Kudos
David Nixon
Valued Contributor

‎10-24-2007 02:58 AM

‎10-24-2007 02:58 AM

Re: rpcbind DOS issue

The November NFS/ONC patch is good news.
Cheers,
Dave.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.