Check CERT vulnerabilities for the specific software you are runnnig. Esspeciall BIND and FTP. Regards, Oyku ----- Original Message ----- From: <ryanm3@eircom.net> To: <suse-security@suse.com> Sent: Thursday, June 14, 2001 12:04 PM Subject: [suse-security] Is this config vulnerable?
I am running the following services on my SuSE 6.4 box:
Port Service version comments 21 in.ftpd 6.4/OpenBSD/Linux-ftpd-0.16 2 users allowed access strong passwords enforced 25 sendmail 8.9.3 53 named BIND 8.2.3-REL 80 httpd Apache 1.3.12 PHP/3.0.15, mod_perl/1.21 110 rinetd 0.61 POP3 requests redirected to another machine 443 https Apache 1.3.12
According to an nmap port scan, all other ports up to port 1024 are in state filtered. Anything from port 1024 up is closed.
My question is whether this box is vulnerable in its current state and if so, what should I be doing to secure it?
Tnx, MR
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com