https://bugzilla.novell.com/show_bug.cgi?id=263637 Summary: SuSEFirewall does not block several ports Product: openSUSE 10.2 Version: Final Platform: i686 OS/Version: openSUSE 10.2 Status: NEW Severity: Critical Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: oscar.mejia@gmail.com QAContact: qa@suse.de I only have http and ntp ports open in SuSEFirewall and when I run nmap it shows more ports open:
nmap [my internet IP]
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2007-04-11 23:59 CEST Interesting ports on VA1-1C-u-0363.mc.onolab.com (62.42.11.108): Not shown: 1676 closed ports PORT STATE SERVICE 22/tcp open ssh 80/tcp open http 111/tcp open rpcbind 3306/tcp open mysql Nmap finished: 1 IP address (1 host up) scanned in 0.313 seconds
After noticed some people were trying to login in my computer via ssh I uninstalled the ssh daemon (I think ssh daemon must not be running on default installation). But the security hole in SuSEFirewall continues. Now I have the mysql and rpcbind ports open without my aim. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.