..:-={{Collaborative Security Information Center}}=-:..
    X-TREME & TECHNOTRONIC Security Collaboration Project
http://www.technotronic.com  -=(c)=-  http://www.x-treme.abyss.com


**************************************************************************
ADVISORY: Possible security problem with rexd
  System: AIX 3.1, 3.2
    CIAC: Number C-21, March 6, 1991 
**************************************************************************

CIAC has become aware of a possible security problem with the rexd
daemon in versions 3.1 and 3.2 of AIX for IBM RS/6000 machines.  In
certain configurations, particularly if NFS is installed, the rexd
(RPC remote program execution) daemon is enabled.  Also note that,
installing NFS with the current versions of "mknfs" will re-enable
rexd even if it was previously disabled.