[src/netbsd-1-4]: src/usr.sbin/portmap pull up rev 1.11 from trunk (requested...

[cgd <cgd%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/1de2a9d15606
branches:  netbsd-1-4
changeset: 470669:1de2a9d15606
user:      cgd <cgd%NetBSD.org@localhost>
date:      Mon Jun 26 01:28:05 2000 +0000

description:
pull up rev 1.11 from trunk (requested by sommerfeld):
  Fix a hole in the portmap libwrap access control. The new code
  disallows all indirect calls to the portmapper except for
  PMAPPROC_NULL unless the -i (insecure) flag has been specified.
  While there, add a new flag, -p (paranoid) which also disallows
  indirect calls to a small number of other services, including
  key parts of NFS and NIS.

diffstat:

 usr.sbin/portmap/portmap.8 |  4 +++-
 1 files changed, 3 insertions(+), 1 deletions(-)

diffs (18 lines):

diff -r 7f1a1089f6dd -r 1de2a9d15606 usr.sbin/portmap/portmap.8
--- a/usr.sbin/portmap/portmap.8        Mon Jun 26 01:27:53 2000 +0000
+++ b/usr.sbin/portmap/portmap.8        Mon Jun 26 01:28:05 2000 +0000
@@ -1,4 +1,4 @@
-.\"    $NetBSD: portmap.8,v 1.7.2.1 2000/01/23 11:17:24 he Exp $
+.\"    $NetBSD: portmap.8,v 1.7.2.2 2000/06/26 01:28:05 cgd Exp $
 .\"
 .\" Copyright (c) 1987 Sun Microsystems
 .\" Copyright (c) 1990, 1991, 1993
@@ -119,6 +119,8 @@
 loopback interface. 
 .It Fl l
 Turns on libwrap connection logging.
+.It Fl p
+prevents indirect calls to a short list of sensitive services, including NFS and NIS.
 .It Fl s
 causes
 .Nm