Re: [suse-security] Turning off PC Anywhere
When I did 'fuser 5632/udp', I did not get anything back on the console.
Should I be explicitly turning off the port? If yes, how do I do it.
Thanks,
sundar
----- Original Message -----
From: "Anders Johansson"
PC Anywhere is a windows program. nessus is reporting it as such, simply because the port 5632 is listed in /etc/services as belonging to PC Anywhere, but ports above 1024 can be opened by any process. try running fuser 5632/udp on the web server to find the id of the process owning the port.
Regards Anders
On Sunday 03 June 2001 02:54, sundar@esaravana.com wrote:
I ran nessus against my web server running (SuSE 7.1-kernel 2.4), it came out with a scan that I am running PC Anywhere in port 5632/udp. I want to get rid of it. How do I do it and from which package did I get this.
Cheers!, Sundar
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
If fuser doesn't give you an answer, it probably means the process has already released the port. In all probability it was just a temporary port, used by a web browser, or some other program. I don't think you have to block the port, but if you want to you should adapt the firewall rules I'm assuming you are already running. e.g. for ipchains do ipchains -A input -dport 5632 -j DENY but as I say I doubt it's necessary. Also note it may cause sideeffects, since a program like a web broser, ftp client or some such may use the port (they use ports >= 1024 at random) and if you block it, it will cause a failure. As with all cases, use your best judgement for your particular circumstances Regards Anders On Sunday 03 June 2001 03:23, sundar@esaravana.com wrote:
When I did 'fuser 5632/udp', I did not get anything back on the console. Should I be explicitly turning off the port? If yes, how do I do it.
Thanks, sundar
----- Original Message ----- From: "Anders Johansson"
To: "Sundar @local" Sent: Saturday, June 02, 2001 6:00 PM Subject: Re: [suse-security] Turning off PC Anywhere PC Anywhere is a windows program. nessus is reporting it as such, simply because the port 5632 is listed in /etc/services as belonging to PC
Anywhere,
but ports above 1024 can be opened by any process. try running fuser
5632/udp
on the web server to find the id of the process owning the port.
Regards Anders
On Sunday 03 June 2001 02:54, sundar@esaravana.com wrote:
I ran nessus against my web server running (SuSE 7.1-kernel 2.4), it
came
out with a scan that I am running PC Anywhere in port 5632/udp. I want
to
get rid of it. How do I do it and from which package did I get this.
Cheers!, Sundar
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
participants (2)
-
Anders Johansson
-
Sundar @local