• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 730
  • Last Modified:

How to secure Portmapper on Centos server

Hi,

From my PCI vulnerability scan i have discovered that i need to close down the service sunrpcportmap on my dedicated web server.  

I've found some iptable instructions to this end: .

iptables -A INPUT -p tcp -s! 192.168.0.0/24 --dport 111 -j DROP
iptables -A INPUT -p udp -s! 192.168.0.0/24  --dport 111 -j DROP

iptables -A INPUT -p tcp -s 127.0.0.1  --dport 111 -j ACCEPT

but am a wee bit confused about what IP/IP range to allow?

If it helps, here's what rpcinfo -p pumps out

   program vers proto   port  service
    100000    4   tcp    111  portmapper
    100000    3   tcp    111  portmapper
    100000    2   tcp    111  portmapper
    100000    4   udp    111  portmapper
    100000    3   udp    111  portmapper
    100000    2   udp    111  portmapper

Can someone explain this to me/advise, please?
0
EyeBallInSalt
Asked:
EyeBallInSalt
1 Solution
 
Gabriel OrozcoSolution ArchitectCommented:
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now