-----BEGIN PGP SIGNED MESSAGE-----

I have just committed four changes to portmap, designed to tighten up
security of RPC under NetBSD:

        * portmap is now tcp-wrapped (i.e. obeys hosts.{allow,deny})
          both for lookups (as `portmap') and for forwarded calls to
          specific services.

        * the new -l flag, analagous to inetd -l, logs all connections
          to portmap.

        * the new -s flag causes portmap to suid to the user daemon
          after binding it's port, so that outgoing connections do
          not come from privileged ports.  This prevents users from
          using portmap to get a free privileged port.

        * portmap now _only_ accepts SETs and UNSETs on the loopback
          interface.  In the past, anyone in the world could do all
          sorts of nasty things to your portmap tables.  Note that
          our libc already_only_ uses the loopback interface to
          register rpc ports.

This work is modeled after/partially taken from Wietse Venema's tcp-
wrapped version of the BSD 4.3 portmap.  It has benefitted greatly from
my discussions with Luke, Matt and many others.

This work has been tested, and works well here, but let me know of any
trouble you have with it.  Note that except for the restriction on
SET/UNSET, none of these changes take effect if you do not have portmap
in /etc/hosts.{allow,deny}, and you do not use the new [-ls] flags.

- -- 
				Jim Wise
				jwise@unicast.com


-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Charset: noconv

iQEVAwUBNppjoYkLDoBfn5jPAQEizAf/TL72wxz3PRuA7R7dRfjXHFRDY16OzpFy
6ZIjTQkelzmV7ZaShWkO19l+IqTIJTy7rYwr2j0onF0cIFQJ5VXoRdzuYxtq9sHQ
EVbyi3JnzyD8shm3/umX3kPsBbNaL3iBsJnNlss3ZUhkX5DQoUpwBOTNkWMH6YB1
nmP8Foc4ZCnqJuXWCRHCeLypSgnZC0QsGY7UycQSk5Gbe2OyYh3lH6eKf+LPWQX6
py95qgfR0nJxsSHYUbLO6xoniHcJLlhBTHzJElUcMJzIzk3o/fAshEgNXLSHqNgj
PRRdMeTQ8HUhn0wY/hw8qBFSqzNicSULYYFejBiCkiahSt7YvpGa8w==
=LiKO
-----END PGP SIGNATURE-----