Patch-ID# 103096-02 Keywords: PC-NFS pcnfsd authentication printing CERT security sunos Synopsis: PC-NFS 5.1a: Sparc/SunOS 4.1x rpc.pcnfsd binary patch Date: May/02/96 Solaris Release: SunOS Release: 4.1.x Unbundled Product: PC-NFS Unbundled Release: 5.1a Relevant Architectures: sparc BugId's fixed with this patch: 1230808 1228158 1241279 1246882 Changes incorporated in this version: 1246882 1241279 Patches accumulated and obsoleted by this patch: 103428-01 Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: rpc.pcnfsd Problem Description: 1230808 : Security problem caused by opening permissions of the pcnfsd spool directory. 1228158 : Rpc.pcnfsd stops running on 4.1.4 servers 1246882 : CERT Advisory CA-96.08 - Vulnerabilities in PCNFSD 1241279 : More security holes Patch Installation Instructions: 1) Login as root. 2) Copy the patch file to /tmp. 3) Kill the rpc.pcnfsd process a) ps -aux |egrep pcnfsd b) note the process ID (pid) and location of rpc.pcnfsd c) kill 4. Save the release version of rpc.pcnfsd. a) eg: mv /etc/rpc.pcnfsd /etc/rpc.pcnfsd.orig 5. Copy the patch release version into /etc. a) Cp /tmp/rpc.pcnfsd /etc 6. Set file ownership and permissions. a) chown root /etc/rpc.pcnfsd b) chmod 755 /etc/rpc.pcnfsd 7. Restart the daemon a) /etc/rcpc.pcnfsd