Contents:

Securing Network Services

• Wrap Your Services: inetd, xinetd
• Chrooting
• Breaking Out of and Securing Chroot Jails
• Chrooting Your Users (and/or SSHD)

Proxies

• Application-Level Proxies
• SOCKS

Specific Examples

• Email
• YP/NIS
• RPC, Portmap and NFS
• Apache: modsecurity
• FTP Servers

---

About this document

9. RPC, Portmap and NFS

RPC-based services are notorious as entry-points for intruders. So these services, in particular, should be wrapped as described above.

...previous

up (conts)

next...