Re: How do I disable (close) ports?

To: debian-security@lists.debian.org
Subject: Re: How do I disable (close) ports?
From: Dmitriy Kropivnitskiy <jeld@mindless.com>
Date: Tue, 4 Dec 2001 17:46:54 -0500
Message-id: <[🔎] 200112042246.fB4MktC26118@zaphod.tigertesting.com>
Reply-to: jeld@mindless.com
In-reply-to: <[🔎] 001601c17d00$ccb88000$660ba8c0@pa237.olsztyn.sdi.tpnet.pl>
References: <[🔎] 001601c17d00$ccb88000$660ba8c0@pa237.olsztyn.sdi.tpnet.pl>

/etc/services doesn't control services. The only function of this file is to 
translate between port numbers and service names. Commenting stuff in there 
doesn't help. What you need is to figure out what processes are keeping the 
ports open and shut down all the unneeded ones. In this case you aparently 
run MySQL database server, HTTP server ( probably apache ), an MTA ( probably 
exim or sendmail ) and inetd ( the rest of the stuff ). I am not sure who 
opens port 66. The best way I know to find out who is opening what is to use 
lsof -i.

On Tuesday 04 December 2001 03:18 pm, J. Paul Bruns-Bielkowicz wrote:
> Hi,
> I disabled all but a few ports in /etc/services, but I have
> tcp        0      0 pa237.olsztyn.sdi.t:111 80.116.215.37:1064
> ESTABLISHED
> when I netstat my machine. What exactly does this mean? I just want
> 25/tcp     open        smtp
> 37/tcp     open        time
> 66/tcp     open        sql*net
> 80/tcp     open        http
> 110/tcp    open        pop-3
> 443/tcp    open        https
> 3306/tcp   open        mysql
> open. How can I close ports 111 and 859? They are not enabled in
> /etc/services
> Thanks,
> J. Paul Bruns-Bielkowicz
> http://www.america.prv.pl

Reply to:

References:
- How do I disable (close) ports?
  - From: "J. Paul Bruns-Bielkowicz" <jp@america.eu.org>

Prev by Date: Re: How do I disable (close) ports?
Next by Date: RE: How do I disable (close) ports?
Previous by thread: Re: How do I disable (close) ports?
Next by thread: Re: How do I disable (close) ports?
Index(es):
- Date
- Thread