Re: Open ports in Debian

To: Rutger Wessels <rutger@dds.nl>
Cc: debian-user@lists.debian.org
Subject: Re: Open ports in Debian
From: Michael Gregg <mgregg@michaelgregg.com>
Date: Tue, 22 Nov 2005 16:17:25 -0800
Message-id: <[🔎] 1132705045.4357.68.camel@localhost.localdomain>
In-reply-to: <[🔎] 4383AFA5.2030607@dds.nl>
References: <[🔎] 4383AFA5.2030607@dds.nl>

port 111 will be used by rpc processes like NIS and NFS. 
port 113 is identd, used to identify the "owner" of a connection. 
port 903... I'm not sure. 

If you box is up on the world. I would suggest making a iptables(or
equivilent) script that will block all but the wanted ports. 

IE, having these ports open can be harmfull. I leave these things open
on my internal network, but on my public webserver I only open what I
need and deny everything else.

On Wed, 2005-11-23 at 00:54 +0100, Rutger Wessels wrote:
> Hello,
> 
> I administer a debian installation that is connected to the Internet. 
> When I run nmap, I found the following:
> Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2005-11-23 00:29 CET
> Interesting ports on xxxxxxxxxx
> (The 1657 ports scanned but not shown below are in state: closed)
> PORT    STATE SERVICE
> 22/tcp  open  ssh
> 25/tcp  open  smtp
> 80/tcp  open  http
> 111/tcp open  rpcbind
> 113/tcp open  auth
> 903/tcp open  iss-console-mgr
> 
> 22,25,80 that are the ones I understand. But what are the other ones? Is 
> it harmful to have them open?
> 
> I run Debian Stable and apt-get upgrade tells me I am up-to-date.
> 
> regards,
> Rutger
> 
>

Reply to:

References:
- Open ports in Debian
  - From: Rutger Wessels <rutger@dds.nl>

Prev by Date: Re: Open ports in Debian
Next by Date: Re: Imap
Previous by thread: Re: Open ports in Debian
Next by thread: Re: Open ports in Debian
Index(es):
- Date
- Thread