Open RPC Services List

A port scanner was used to draw a map of all the RPC services accessible from the Internet.

Unauthorized users can subsequently test vulnerabilities related to each of the services open.

Shut down any unknown or unused service on the list. To remove all RPC services, you cannot simply filter port 111 at the firewall because port 111 (the "portmap" service) only shows which ports the RPC services are listening on. Therefore, it cannot block access to these services. Disable the RPC services at the server level because each listens on an ephemeral UDP or TCP port.