Mailinglist Archive: opensuse (5130 mails)
| < Previous | Next > |
Re: [SLE] worrying port scan
- From: Frederic <fred21@xxxxxxxxx>
- Date: Fri, 05 May 2006 16:57:22 +0200
- Message-id: <445B67D2.6030405@xxxxxxxxx>
steve wrote:
Hello,
Close the services (ftp and telnet)
Eg: if you use pure-ftpd /etc/init.d/pure-ftpd stop the port 21 will be closed or not open because the service will be stopped
Then
go to yast --> Security and users ->> Firewall --> Allowed Services. There, check if Services to allow (ftp and telnet) are present, if yes, choose ftp and select remove idem for telnet,
If telnet or ssh are not present in the list, you can go to advanced and remove in tcp 21 and 23
Do you understand?
See you!!!
Frédéric
A portscan from an external Internet box onto my webserver gives:
PORT STATE SERVICE
21/tcp filtered ftp
22/tcp filtered ssh
23/tcp open telnet
80/tcp open http
254/tcp open unknown
255/tcp open unknown
556/tcp filtered remotefs
The only open port on the SuSEfirewall2 script is port 80. I don't want ftp nor telnet. There is no mention of them in the script and I also double checked with yast.
What does 'filtered' mean?
Can anyone help?
SuSE 10.0
Thanks, Steve.
Hello,
Close the services (ftp and telnet)
Eg: if you use pure-ftpd /etc/init.d/pure-ftpd stop the port 21 will be closed or not open because the service will be stopped
Then
go to yast --> Security and users ->> Firewall --> Allowed Services. There, check if Services to allow (ftp and telnet) are present, if yes, choose ftp and select remove idem for telnet,
If telnet or ssh are not present in the list, you can go to advanced and remove in tcp 21 and 23
Do you understand?
See you!!!
Frédéric
| < Previous | Next > |