Re: open ports remaining

To: Glenn Becker <glenn@icarus.usanetworks.com>
Cc: debian-user@lists.debian.org
Subject: Re: open ports remaining
From: David B.Harris <dbarclay10@yahoo.ca>
Date: Sat, 17 Feb 2001 23:38:44 -0500
Message-id: <[🔎] E14ULcS-0001VD-00@david.localdomain>
In-reply-to: <[🔎] Pine.GSO.4.21.0102172305260.26435-100000@icarus.usanetworks.com>
References: <[🔎] Pine.GSO.4.21.0102172305260.26435-100000@icarus.usanetworks.com>

To quote Glenn Becker <glenn@icarus.usanetworks.com>,
# 
# All,
# 
# I have been trying to secure my Debian box, which enjoys a DSL
# connection. I've been going through /etc/inetd.conf, commenting out
# services, and K'ing others in the /etc/rc2.d/, until what I have left
is
# the following (output from nmap):
# 
# Interesting ports on localhost (127.0.0.1):
# Port    State       Protocol  Service
# 22      open        tcp        ssh             
# 25      open        tcp        smtp            
# 53      open        tcp        domain          
# 111     open        tcp        sunrpc          
# 
# So, the questions: I have read some about sunrpc in the list archives
but
# have not found how to close the port; don't know what domain is, and
am
# confused smtp is still there since I've commented out the line in
# inetd.conf ... I have set my hosts.deny to 
# 
# ALL EXCEPT sshd: ALL
# 
# ... I guess then port 22 is not a concern?

Personally, I've never put a whole lot of faith into just turning
services off. Now, I could be wrong. What I usually do is use 'ipchains'
to set up a firewall. Not that it helps you here, but it's something to
think about :)

David Barclay Harris, Clan Barclay
    Aut agere, aut mori. (Either action, or death.)

Reply to:

References:
- open ports remaining
  - From: Glenn Becker <glenn@icarus.usanetworks.com>

Prev by Date: Java Runtime and StarOffice 5.2
Next by Date: Re: Java Runtime and StarOffice 5.2
Previous by thread: open ports remaining
Next by thread: Re: open ports remaining
Index(es):
- Date
- Thread