Greg Neumann dadneumann at adelphia.net
Thu Oct 2 09:37:25 EDT 2003 

Riga, Anthony wrote:

>Thanksfor answering my question now I understand.... 
>
>
>-----Original Message-----
>From:	Justin Bennett [mailto:justin.bennett at dynabrade.com]
>Sent:	Wed 10/1/2003 9:33 PM
>To:	nflug at nflug.org
>Cc:	
>Subject:	Re: 
>Since no one has responded yet I'll spew my 2 cents.
>
>Yes linux does have RPC services probably the most common is NFS for 
>sharing files over a network. They're have been RPC vulnerabilities in 
>the past. They're are several reasons that linux isn't affected by wide 
>spread worms like MS. Linux isn't a cookie cutter OS they're are many 
>dists, with many diffrent configurations, it's hard (and not worth the 
>time) to write code to attack a large number of systems, due mostly to 
>the fact that they're not all the same. Many diffrent versions of 
>kernels, software, configs, ect, so it's hard to find a vulerability 
>that affects everone, you see more one box hacking, when a hacker 
>evaluates the security vulerabilities of a single box and attacks it. 
>Also it is easy to turn off alot of that stuff off  if your not using 
>RPC services. Also Linux has better firewalling if your directly 
>connected to the internet to prevent external attacks. Plus people who 
>use Linux are more likely to keep their system up to date than the 
>average MS user.
>
>Justin
>
>
>Riga, Anthony wrote:
>
>  
>
>>Ok if Linux uses RPC calls are these the same as the ones Microsuks uses that causes easier access for viruses? Thanks! 
>>
>>
>> 
>>
>>    
>>
>
>  
>
Not to mention the fact that every distro I've used has the RPC port 
blocked by default.  To make matters worse for Win$#@, you cannot block 
the port, even after the patch.  The quick workaround was to have an 
external firewall that was able to block the port between the win 
machine/s and the internet.  After you apply the patch, the port is 
STILL not blocked, and you still can't block it yourself, even if you 
disable as much of RPC as you can.  This is for XP Pro, mind you, the 
"most secure Windows ever"!  How stupid is that?

Disgruntled M$ user at work.
-Greg

More information about the nflug mailing list