Disable Portmapper services

**Is your feature request related to a problem? Please describe.**
Currently it seems that setting up QuickStack also enables Portmapper services, e.g. `rpcbind` which can potentially be used for DDoS reflection attacks, see [BSI / Openly accessible Portmapper services](https://www.bsi.bund.de/EN/Themen/Unternehmen-und-Organisationen/Cyber-Sicherheitslage/Reaktion/CERT-Bund/CERT-Bund-Reports/HowTo/Offene-Portmapper-Dienste/Offene-Portmapper-Dienste_node.html).

`rpcbind` only seems to be required for longhorn / nfs v3, so it might be ok to simply disable it. See also these issues:
https://github.com/longhorn/longhorn/issues/2603
https://github.com/longhorn/longhorn/discussions/6237

**Describe the solution you'd like**
Disable rpcbind after setup of QuickStack:
```shell
systemctl stop rpcbind.service rpcbind.socket
systemctl disable rpcbind.service rpcbind.socket
```


**Describe alternatives you've considered**
No alternative solution considered. Alternatively it might be possible to limit portmapping services to nodes' IP addresses or similar.

**Additional context**
QuickStack v0.0.2


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Disable Portmapper services #18

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Disable Portmapper services #18

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions