[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Need help blocking all ports except a few

On Sat, Dec 27, 2003 at 12:56:07PM +1100, Tarragon Allen wrote:
> On Sat, 27 Dec 2003 11:13 am, Patrick Lesslie wrote:
> > On Fri, Dec 26, 2003 at 11:02:36AM -0600, Eric MacAdie wrote:
> > > Patrick Lesslie wrote:
> > > >You can stop inetd altogether, and lpd, portmap and dhclient - in fact
> > > >most of these things by experimentally removing links from /etc/rc2.d/
> > > >and possibly also from /etc/rcS.d/
> > >
> > > Could you also stop services by simply changing the permissions of the
> > > scripts in /ett/init.d/ ?
> >
> > Typically the links are modified instead because then you can still
> > do "/etc/init.d/some_service start" when you do want it.  But yes,
> > you could do that.  If you're going to change them like that though,
> > might be best to remove the packages.
> 
> If you don't want the services to run at startup you can also use update-rc.d 
> like so :
> 
> boxen# update-rc.d -f packagename remove

There is even small TUI (Text User Interface) tool in woody called
rcconf which can add or remove links from /etc/rc?.d/
Reply to: