You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@cloudstack.apache.org by "Clement Chen (JIRA)" <ji...@apache.org> on 2012/10/02 23:21:10 UTC

[jira] [Created] (CLOUDSTACK-244) RPC port on SSVM is open on all interfaces

Clement Chen created CLOUDSTACK-244:
---------------------------------------

             Summary: RPC port on SSVM is open on all interfaces
                 Key: CLOUDSTACK-244
                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-244
             Project: CloudStack
          Issue Type: Bug
          Components: Install and Setup
    Affects Versions: 4.0.0
            Reporter: Clement Chen


SSVM has rpc portmap services listening on all interfaces. Especially on the public interface, it poses an attack entry point. We should limit the interface the rpc.portmap service is listening on.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Updated] (CLOUDSTACK-244) RPC port on SSVM is open on all interfaces

Posted by "Alex Huang (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/CLOUDSTACK-244?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Alex Huang updated CLOUDSTACK-244:
----------------------------------

    Fix Version/s: 4.1.0
    
> RPC port on SSVM is open on all interfaces
> ------------------------------------------
>
>                 Key: CLOUDSTACK-244
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-244
>             Project: CloudStack
>          Issue Type: Bug
>          Components: Install and Setup
>    Affects Versions: 4.0.0
>            Reporter: Clement Chen
>             Fix For: 4.1.0
>
>
> SSVM has rpc portmap services listening on all interfaces. Especially on the public interface, it poses an attack entry point. We should limit the interface the rpc.portmap service is listening on.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira