![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
System administration note
2005-08-20 07:22 am![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
mdlbearIf you want to put a firewall on an NIS (Sun "Yellow Pages") server, you have to start
ypserv with an explicit port number -- otherwise it just picks one at random! What were they thinking? Has anybody hit Sun with a clue-by-four yet?
rpc.portmap
Date: 2005-08-21 04:30 am (UTC)Eventually, there are going to be so many services running that there will be no way to run an "assigned port" scheme. Thus, they created the 'portmapper' concept -- register a service name with the portmapper, and what port you've got, and then any client that wants to use your service asks the portmapper what port you're on, using your registered name. It picks one at random so as to reduce the incidence of a port collision (bind() failure).
This is actually in one of the RFCs about NFS, as I recall. It makes sense in a strange sort of way, but they didn't think about firewalls back then.
Re: rpc.portmap
Date: 2005-08-21 09:13 am (UTC)Re: rpc.portmap
Date: 2005-08-21 09:28 am (UTC)"The Internet views censorship as damage and routes around it."
Re: rpc.portmap
Date: 2005-08-22 07:58 pm (UTC)(I recall that Gates' personal magnum opus, MS BASIC, embodied the philosophy that it not only knew better than the user and the programmer, it also knew better than the folks who built the hardware. Feh.)