Using Privileged Ports (System Administration Guide, Volume 2)

System Administration Guide, Volume 2

Previous: Restricting Superuser (Root) Access
Next: Using Automated Security Enhancement Tool (ASET)

Using Privileged Ports

If you do not want to run Secure RPC, a possible substitute is the Solaris "privileged port" mechanism. A privileged port is built up by the superuser with a port number of less than 1024. After a client system has authenticated the client's credential, it builds a connection to the server via the privileged port. The server then verifies the client credential by examining the connection's port number.

Non-Solaris clients, however, might not be able to communicate via the privileged port. If they cannot, you will see error messages such as these:

"Weak Authentication
NFS request from unprivileged port"

Previous: Restricting Superuser (Root) Access
Next: Using Automated Security Enhancement Tool (ASET)