Re: Re: How do I disable (close) ports?
-----BEGIN PGP SIGNED MESSAGE-----
On Wed, 5 Dec 2001, Rolf Kutz wrote:
> J. Paul Bruns-Bielkowicz (email@example.com) wrote:
> > I have a restricted services file and a default (open) services file. Some
> > services are disabled, i.e.
> > 9/tcp open discard
> > 13/tcp open daytime
> > 109/tcp open pop-2
> > 987/tcp open unknown
> > by commenting them out of /etc/services.
> Commenting out things in /etc/services doesn't
> disable anything. If you want to disable services,
> edit /etc/inetd.conf, /etc/hosts.allow,
> /etc/hosts.deny and the scripts in /etc/init.d/,
> but maybe that's what you meant.
> Then portscan you maschine to make sure, the ports
> are deactivated.
> - Rolf
If you do edit the init.d scripts don't forget to end the processes too.
Also don't just use a port scanner like nmap. have a look at lsof too
lsof -Pan -i tcp -i udp
It's quite useful.
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
-----END PGP SIGNATURE-----