Re: open ports remaining
To quote Glenn Becker <glenn@icarus.usanetworks.com>,
#
# All,
#
# I have been trying to secure my Debian box, which enjoys a DSL
# connection. I've been going through /etc/inetd.conf, commenting out
# services, and K'ing others in the /etc/rc2.d/, until what I have left
is
# the following (output from nmap):
#
# Interesting ports on localhost (127.0.0.1):
# Port State Protocol Service
# 22 open tcp ssh
# 25 open tcp smtp
# 53 open tcp domain
# 111 open tcp sunrpc
#
# So, the questions: I have read some about sunrpc in the list archives
but
# have not found how to close the port; don't know what domain is, and
am
# confused smtp is still there since I've commented out the line in
# inetd.conf ... I have set my hosts.deny to
#
# ALL EXCEPT sshd: ALL
#
# ... I guess then port 22 is not a concern?
Personally, I've never put a whole lot of faith into just turning
services off. Now, I could be wrong. What I usually do is use 'ipchains'
to set up a firewall. Not that it helps you here, but it's something to
think about :)
David Barclay Harris, Clan Barclay
Aut agere, aut mori. (Either action, or death.)
Reply to: