On Fri, 26 Oct 2001 09:02:04 -1000, Clifton Royston wrote: >Probably that's it; it's got the pair of ports, and because they're >under RPC, the port numbers are presumably dynamically defined. Not >having tried out DRAC, I have no idea how that's supposed to work.
That sounds likely. The listen port is of course fixed, but each instance of Qpopper (of which there might many, simultaneously, serving different users) is going to need its own outbound port to talk to the DRAC daemon. I'm not real familiar with how much control one can have over an RPC client/server, but it might be possible to restrict what interface is used for the sockets, so that all RPC traffic is forced through the loopback interface. You may need to do this at the source code level. I don't recall seeing any settings for DRAC or Qpopper to select the interface. I just trust ipchains to block that port to the outside world. Ken mailto:[EMAIL PROTECTED] http://www.sewingwitch.com/ken/ [If answering a mailing list posting, please don't cc me your reply. I'll take my answer on the list.]