best bet is for you to run harden_suse on your machine. It will help get rid of all the unnecessary stuff thus you only enable those you need. Noah. On Thu, 22 Nov 2001, Ray Dillinger wrote:
When I run nmap against my system, it says something called "auth" is running on port 113. But there is no man page for auth. What is it? What will quit working if I shut it down?
In inetd.conf, there were several services -- such as a "time" daemon with both UDP and TCP sockets, that had no explanation. I shut them down and nothing seems to have broken.
The documentation for sunrpc, which binds port 111, does not say what it's used for in a SuSE install. Clearly, there could be important stuff depending on it. How can I tell whether there actually is? Just shut it down and see what breaks? Aargh!
I think that in general ANYTHING that binds a port ought to have a man page explaining what it is, why it needs a port, and what depends on it. It would make the job of security newbies who want to actually understand their systems instead of hamfistedly shutting stuff down and hoping for the best ever so much easier.
Bear
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com