Thanks to all those who replied. I should've mentioned the CERT advisory in
my original post so I'll do so here for those of you who haven't seen it
yet:
<
http://www.cert.org/advisories/CA-98.11.tooltalk.html>
The advisory doesn't mention Digital Unix specifically but a previous post
to this list from a Compaq/Digital rep indicated DU was also vulnerable.
As some of the respondents suggested, I killed rpc.ttdbserverd and
commented out the relevant line in inetd.conf as an interim quick fix but
very shortly thereafter got a phone call that the CDE file manager was
broken- sure enough, re-enabling it "fixed" file manager.
The good news is that Compaq/Digital finally got back to me with the patch.
Based on some of the info I read, I expected something truly ugly but it
was simply 3 replacement binaries- easy enough.
Thanks again to all those who responded.
-Harry
--
Harry Hahn - h3_at_ucla.edu
Research and Instruction Biocomputer Services - UCLA
Received on Wed Oct 14 1998 - 18:20:14 NZDT