Welcome to HBH! If you had an account on hellboundhacker.org you will need to reset your password using the Lost Password system before you will be able to login.

RPC - risks or vulnerable?

  1. Home
  2. Forum
  3. Questions
  4. RPC - risks or vulnerable?

bruxa's Avatar

bruxa

Member
0 0

Hi all, Currently, I am interested in RPC (remote procedure calls) running on different machines. What do you think: is running this service a "huge" security risks? I do not mean that any running service can be a security risk. My question goes in the direction of "what general attacks can be expected running such a service"? And what are the major goals of a potential attacker who find this service and what can he do in general? Furthermore, why is it sometimes necessary to run an rpc daemon instead of disable it? For what exactly is it required?

I also played around with the tool rpcinfo to get some more information about the remote machine. I would kindly like to start a little discussion about this topic to learn what the community thinks about and to get more experiences with tools like rpcinfo, rpcclient, etc.

Thank for answering bruxa


spyware's Avatar

spyware

Banned
0 0

Homework much?


ghost's Avatar

ghost

0 0

No body cares, please come back when you have an even remotely interesting question.


ghost's Avatar

ghost

0 0

There's loads of information on RPC all over the Internets.

For defense, Google "rpc security". For offense, Google "rpc attack".

Read some, then refine your search based upon what you've learned about or seen as buzzwords.


bruxa's Avatar

bruxa

Member
0 0

aehhhh, you are right! Google should mostly always asked as fist….


ghost's Avatar

ghost

0 0

Ahh, the cynicism is in the air…


spyware's Avatar

spyware

Banned
0 0

cyb3rl0rd1867 wrote: Ahh, the cynicism is in the air… No.