1.RPC runs on TCP also.
3. Why RPC is insecure?.
Any discussion on this topic would be of help to us.
sateesh.
______________________________ Reply Separator _________________________________
Subject: RPC Across a firewall?
Author: "Richard Giering Jr." <Richard_Giering_Jr .
.
@
cch .
com> at SMTP_GW
Date: 2/5/96 5:58 PM
I know the kind of reaction I'm libel to get but I said I'd check into it....
We have developers who are writing apps based upon RPC and demanding that RPC
be opened on the firewall. The idea is to enable users with their own Internet
provider to be able to access Internal applications using RPC/client-server
apps.
I have some concerns listed below. Can anyone think of anymore?
1) RPC runs on UDP (right?) and UDP opens a whole other bag of worms
2) RPC and portmapper are hard if not impossible to proxy.
3) RPC is insecure
4) portmapper has many known security holes.
My reaction has been "if they want to dialup, we'll setup internal modems"
Is anyone aware of firewall products allow and protect RPC?
Rick Giering, Firewall Ranger
CCH Inc.
|
|
