Re: Can a daemon listen only on some interfaces?
-----BEGIN PGP SIGNED MESSAGE-----
Content-Type: text/plain; charset=us-ascii
In message <[🔎] 20011208192219.GA21336@auctionwatch.com>, Petro writes:
>On Sat, Dec 08, 2001 at 01:40:06AM -0800, email@example.com wrote:
>> After reading a previous thread about stopping services from listening
>> on certains ports, I decided to investigate things a little further for
>> my system.
>> So, what I can figure out is that it seems that I have only the
>> following daemons listening: postfix, sshd, cupsd, XF86_SVGA, portmap.
>> I have only deliberately decided to run postfix, sshd and cupsd.
>> Everything in /etc/inetd.conf is hashed out. In fact I renamed the file
>> so that it is not accessed at all.
> Better just not to start inetd at all. man inetd and update-rc.d
Once thing to keep in mind when turning off services is to use update-rc.d
correctly. It's not a good idea to turn off services using
"update-rc.d -f remove" because that completely removes the links for a
package. If the links are completely removed, then when the package is
upgraded the links will be restored and the service will start up again at
the next reboot. The correct way to turn off a service is to remove all of
the links except for one Kill link. That way the service won't start and
won't be restarted when the service is upgraded.
Ted Cabeen http://www.pobox.com/~secabeen firstname.lastname@example.org
Check Website or Keyserver for PGP/GPG Key BA0349D2 email@example.com
"I have taken all knowledge to be my province." -F. Bacon firstname.lastname@example.org
"Human kind cannot bear very much reality."-T.S.Eliot email@example.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (OpenBSD)
Comment: Exmh version 2.5 07/13/2001
-----END PGP SIGNATURE-----