Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

How to secure Portmapper on Centos server

Posted on 2013-06-17
1
Medium Priority
?
714 Views
Last Modified: 2013-07-03
Hi,

From my PCI vulnerability scan i have discovered that i need to close down the service sunrpcportmap on my dedicated web server.  

I've found some iptable instructions to this end: .

iptables -A INPUT -p tcp -s! 192.168.0.0/24 --dport 111 -j DROP
iptables -A INPUT -p udp -s! 192.168.0.0/24  --dport 111 -j DROP

iptables -A INPUT -p tcp -s 127.0.0.1  --dport 111 -j ACCEPT

but am a wee bit confused about what IP/IP range to allow?

If it helps, here's what rpcinfo -p pumps out

   program vers proto   port  service
    100000    4   tcp    111  portmapper
    100000    3   tcp    111  portmapper
    100000    2   tcp    111  portmapper
    100000    4   udp    111  portmapper
    100000    3   udp    111  portmapper
    100000    2   udp    111  portmapper

Can someone explain this to me/advise, please?
0
Comment
Question by:EyeBallInSalt
1 Comment
 
LVL 19

Accepted Solution

by:
Gabriel Orozco earned 1500 total points
ID: 39255205
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.
What You Need to Know when Searching for a Webhost Provider
Integration Management Part 2
Loops Section Overview

885 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question