Re: Re: How do I disable (close) ports?

To: Rolf Kutz <kutz@gmx.de>
Cc: debian-security@lists.debian.org
Subject: Re: Re: How do I disable (close) ports?
From: basilisk <basilisk@paradise.net.nz>
Date: Thu, 6 Dec 2001 01:14:07 +1300 (NZDT)
Message-id: <[🔎] Pine.LNX.4.40.0112060111000.13458-100000@avon.randomevents.org>
In-reply-to: <[🔎] 20011205130650.E14014@afrika>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 5 Dec 2001, Rolf Kutz wrote:

> J. Paul Bruns-Bielkowicz (jp@america.eu.org) wrote:
> >
> > I have a restricted services file and a default (open) services file. Some
> > services are disabled, i.e.
> > 9/tcp      open        discard
> > 13/tcp     open        daytime
> > 109/tcp    open        pop-2
> > 987/tcp    open        unknown
> > by commenting them out of /etc/services.
>
> Commenting out things in /etc/services doesn't
> disable anything. If you want to disable services,
> edit /etc/inetd.conf, /etc/hosts.allow,
> /etc/hosts.deny and the scripts in /etc/init.d/,
> but maybe that's what you meant.
>
> Then portscan you maschine to make sure, the ports
> are deactivated.
>
> - Rolf

If you do edit the init.d scripts don't forget to end the processes too.
Also don't just use a port scanner like nmap. have a look at lsof too

lsof -Pan -i tcp -i udp

It's quite useful.


-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Charset: noconv

iQA/AwUBPA4PktZK+ucCabUAEQIsCQCg50isGcNUXXF3gFn9OsOa9G1es/cAn1zX
bxOS4dEjRcAfKgK04DrvZkHm
=46SW
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: Re: How do I disable (close) ports?
  - From: Rolf Kutz <kutz@gmx.de>

References:
- Re: Re: How do I disable (close) ports?
  - From: Rolf Kutz <kutz@gmx.de>

Prev by Date: Re: Re: How do I disable (close) ports?
Next by Date: Re: Re: How do I disable (close) ports?
Previous by thread: Re: Re: How do I disable (close) ports?
Next by thread: Re: Re: How do I disable (close) ports?
Index(es):
- Date
- Thread