by redmail.netbsd.org with SMTP; 18 Oct 1999 08:05:44 -0000
	by antioche.lip6.fr (8.9.3/8.9.3) with ESMTP id KAA15869;
	Mon, 18 Oct 1999 10:05:31 +0200 (MEST)
Date: Mon, 18 Oct 1999 10:05:30 +0200
From: Manuel Bouyer <bouyer@asim.lip6.fr>
To: matthew green <mrg@eterna.com.au>
Cc: "Brian C. Grayson" <bgrayson@marvin.ece.utexas.edu>,
        tech-security@netbsd.org, itojun@iijlab.net
Subject: Re: libwrap (was Re: amd vulnerability: patch for 1.3.3)
Message-ID: <19991018100530.F21070@antioche.lip6.fr>
References: <19991018014804.A19607@marvin.ece.utexas.edu> <16517.940229562@eterna.com.au>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
In-Reply-To: <16517.940229562@eterna.com.au>; from matthew green on Mon, Oct 18, 1999 at 04:52:42PM +1000

On Mon, Oct 18, 1999 at 04:52:42PM +1000, matthew green wrote:
>    
>      Thanks.  It should be feasible to check against both portmap
>    and the specific service, via two checks -- "portmap" and
>    getrpcbynumber(prog).  Would this be worth coding up?
> 
> wouldn't this require hacking each program ?  i'm not saying this
> _isn't_ worthwhile (mountd access lists would be nice, eg :-), but
> that it is not a localised change ...?

Yes, all programs would need to be changed.

--
Manuel Bouyer, LIP6, Universite Paris VI.           Manuel.Bouyer@lip6.fr
--