RE: How do I disable (close) ports?

To: "Thomas Bushnell, BSG" <tb@becket.net>, "Alexander Clouter" <alexander.clouter@ic.ac.uk>
Cc: "J. Paul Bruns-Bielkowicz" <jp@america.eu.org>, <debian-security@lists.debian.org>
Subject: RE: How do I disable (close) ports?
From: "Howland, Curtis" <howlandc@kvh.co.jp>
Date: Wed, 5 Dec 2001 09:46:05 +0900
Message-id: <[🔎] FBBD2DD3FF1ECA42817E762126D2FB0E05B9AF@jpkvhms2.tel.kvh.co.jp>

This is one remnant of the "trusted" world of Unix, and the legacy that
Linux has to deal with. It's ipchains/iptables to the rescue.

I do not have NFS turned on in the kernel modules, nor the package
installed. Yet this port is still open *to the outside world*. Can
anyone suggest a reason why this has not been restricted only to the
loopback interface, to be "opened" to other interfaces by the daemons if
installed?

That is, if it cannot be eliminated entirely. For the most part, I've
found that Linux is good for not turning things on unless you want them
on, but this seems to be the exception that proves the rule.

Any other opinions?

Curt-

-----Original Message-----
From: Thomas Bushnell, BSG [mailto:tb@becket.net]

Portmapper is an essential server for SunRPC services, including NFS,
mountd, nfsd, etc.

Reply to:

Prev by Date: Re: Syslog config file.
Next by Date: Re: VI wrapper for SUDO? - another bad way ??
Previous by thread: RE: How do I disable (close) ports?
Next by thread: Fw: Re: How do I disable (close) ports?
Index(es):
- Date
- Thread