swagentd as security hole

Mihails Nikitins · ‎10-06-2003

Hi,

by default swagentd listens on tcp/2121. Is it possible to restrict allowed incoming connections to localhost or to a defined list of hosts?

Thanks & points in advance!

BR,
Mihails

KISS - Keep It Simple Stupid

Jeff Schussele · ‎10-07-2003

Hi Mihails,

Yes access can be restricted. But you must use the swacl command to do so - For example:

swacl -l depot -M any_other:- @ /var/spool/sw
swacl -l product -M any_other:- \* @ /var/spool/sw

Puts a restriction on access to the /var/spool/sw depot on the localhost.
Note that you usually have to restrict at multiple levels - in this case at the depot as well as product level.
Do a man swacl for further details.

HTH,
Jeff

PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!

Zeev Schultz · ‎10-07-2003

For security reason or to imporove software
depot management? If for second reason go for
swacl, if for first reason (IMHO) use something
like ipfilter.

So computers don't think yet. At least not chess computers. - Seymour Cray

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

swagentd as security hole

swagentd as security hole

Re: swagentd as security hole

Re: swagentd as security hole