Re: Open ports in Debian
port 111 will be used by rpc processes like NIS and NFS.
port 113 is identd, used to identify the "owner" of a connection.
port 903... I'm not sure.
If you box is up on the world. I would suggest making a iptables(or
equivilent) script that will block all but the wanted ports.
IE, having these ports open can be harmfull. I leave these things open
on my internal network, but on my public webserver I only open what I
need and deny everything else.
On Wed, 2005-11-23 at 00:54 +0100, Rutger Wessels wrote:
> Hello,
>
> I administer a debian installation that is connected to the Internet.
> When I run nmap, I found the following:
> Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2005-11-23 00:29 CET
> Interesting ports on xxxxxxxxxx
> (The 1657 ports scanned but not shown below are in state: closed)
> PORT STATE SERVICE
> 22/tcp open ssh
> 25/tcp open smtp
> 80/tcp open http
> 111/tcp open rpcbind
> 113/tcp open auth
> 903/tcp open iss-console-mgr
>
> 22,25,80 that are the ones I understand. But what are the other ones? Is
> it harmful to have them open?
>
> I run Debian Stable and apt-get upgrade tells me I am up-to-date.
>
> regards,
> Rutger
>
>
Reply to: