Subscribe

portmap rpc

We ran a port scan on the filer and it flagged an issue with the portmapper. "Retina has detected that the RPC portmapper service (rpc.portmap) is running on the scanned host. Attackers may use information provided by the portmapper to ascertain the host's operating system and identify other possibly vulnerable RPC services."

According to this link http://mysupport.netapp.com/NOW/knowledge/docs/olio/scanner_results/ the issue is a false positive, it's a configuration issue and not a software flaw. It doesn't describe what configuration. I disabled NFS to disable portmapper according to this link http://mysupport.netapp.com/NOW/knowledge/docs/olio/scanner_results/, but the port scan still flags the rpc.portmapper issue. Are there other configurations I need to make?

Re: portmap rpc

Hi,

 

In an Network File System (NFS) v3 or NFS v2 environment, portmapper is required.  Without portmapper, NFS clients will be unable to mount to the server.  Therefore the only way to disable portmapper in Data ONTAP is to disable NFS v2 and NFS v3.

 

Thanks

 

 

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

Re: portmap rpc

I'm having the same issue trying to turn off portmap. I've tried disabling and turning off nfs, nfs v2, and nfs v3, but no success. There does not seem to be any command or option to enable or disable portmap itself.