Information
Sybase ASE allows server-to-server RPC to be disabled via the allow remote access
configuration parameter. By default server-to-server RPC is enabled since it is required for
communication with the Backup Server; disabling server-to-server RPC will make it
impossible to back up a database.
The Sybase System Administrator Guide for ASE 15.0, Volume 1 Chapter 5 claims:
Since other system administration actions are required to enable remote servers other than
Backup Server to execute RPCs, leaving this option set to 1 does not constitute a security risk.
Nonetheless, if communication with remote servers including the Backup Server is not
required then this configuration parameter can be set to 0 to disable server-to-server RPC.
Rationale:
Disabling remote access will reduce the remote attack surface of system.
Solution
1. Connect to the database as a user with the sso_role and execute the following SQL
statement to disable server-to-server RPC:
exec sp_configure 'allow remote access', 0