[j-nsp] Juniper UDP Amplification Attack - UDP port 111 ?
Julien Goodwin
jgoodwin at studio442.com.au
Mon Mar 26 18:52:34 EDT 2018
On 26/03/18 17:31, Chris Adams wrote:
> Got an MX204 - all the things left running on the Wind River Linux VM
> host are pretty embarrassing (even if there's no actual network access
> and so not a security issue). I have no need on a router for RPC, BIND,
> Gluster, NFS, Zeroconf, Postfix, or dnsmasq; I'm not sure about Open
> vSwitch (haven't looked to see if JUNOS is using that or something).
>
> Some of it looks like libvirt was installed and left with defaults, like
> autostarting a private network configured for NAT and dnsmasq. That
> also probably pulled in NFS, Gluster, and Open vSwitch.
That sounds a lot like the first releases of Cisco's IOS-XE VM (my
memory says that it at least tried to start Samba, but I could be wrong).
Which is a shame for a bunch of reasons, not least since that probably
means it boots much slower than it should.
More information about the juniper-nsp
mailing list