From 0f7163d30488199fbe7511896717a8af85d2bb78 Mon Sep 17 00:00:00 2001
From: "Christian S.J. Peron" <csjp@FreeBSD.org>
Date: Thu, 1 Jun 2006 14:14:58 +0000
Subject: [PATCH] Since NIS is an RPC based service, add a note that when
 adjusting access controls in NIS, similar access controls should be
 considered for the rpcbind as well.

---
 etc/hosts.allow | 1 +
 1 file changed, 1 insertion(+)

diff --git a/etc/hosts.allow b/etc/hosts.allow
index d8f8c6cdb8e2..054ea2df6742 100644
--- a/etc/hosts.allow
+++ b/etc/hosts.allow
@@ -66,6 +66,7 @@ rpcbind : 192.0.2.96/255.255.255.224 : allow
 rpcbind : ALL : deny
 
 # NIS master server. Only local nets should have access
+# (Since this is an RPC service, rpcbind needs to be considered)
 ypserv : localhost : allow
 ypserv : .unsafe.my.net.example.com : deny
 ypserv : .my.net.example.com : allow