AW: [suse-security] Turning of services
hello folks,
Von: Francisco M. Marzoa Alonso [mailto:fmmarzoa@idecnet.com] Gesendet am: Donnerstag, 6. April 2000 10:52 An: SuSE Security Betreff: [suse-security] Turning of services
I've just installed a SuSE63 in a new machine and i'm trying >to leave it just with the essentials services, doing a portscan this is the result:
fmmarzoa@vivaldi:~ > portscan 192.168.66.251 192.168.66.251 22 23 80 113 139 443 514 #
Well, i want port 22 (ssh), 23 (telnet), 80 (http) and 139 (netbios - sorry, it should serve files to windows clients :/) active, and i know how to deactivate them if i need, but i cant find how to put out 113 (auth), 443 (https) and 514 (shell ?).
port 113: /sbin/init.d/identd stop , or in rc.config start_ident=no, i think it is a good idea to disable this service ;-) port 514 is "shell" in /etc/inetd.conf instead of portscan do just netstat -ln or netstat -l
I've travelled through /etc/inetd.conf and /etc/rc.services trying to find
an answer for my question but... may m I turning blind?
-- Francisco M. Marzoa Alonso Nuevo Mundo - Dpto. Informático ICQ#: 62850923 Henri Dunant, 19 - 28036 Madrid tfno: +34 91 343 18 40 ext. 207 España / Spain fax: +34 91 350 28 45
"Bauer, Juergen" wrote:
hello folks,
Von: Francisco M. Marzoa Alonso [mailto:fmmarzoa@idecnet.com] Gesendet am: Donnerstag, 6. April 2000 10:52 An: SuSE Security Betreff: [suse-security] Turning of services
I've just installed a SuSE63 in a new machine and i'm trying >to leave it just with the essentials services, doing a portscan this is the result:
fmmarzoa@vivaldi:~ > portscan 192.168.66.251 192.168.66.251 22 23 80 113 139 443 514 #
Well, i want port 22 (ssh), 23 (telnet), 80 (http) and 139 (netbios - sorry, it should serve files to windows clients :/) active, and i know how to deactivate them if i need, but i cant find how to put out 113 (auth), 443 (https) and 514 (shell ?).
port 113: /sbin/init.d/identd stop , or in rc.config start_ident=no, i think it is a good idea to disable this service ;-) port 514 is "shell" in /etc/inetd.conf
You're on right, i did a stupid grep by 514 value literally... excuse me... :/ All right now with these 113 and 514 ports :)
instead of portscan do just netstat -ln or netstat -l
Thank u, this is better (no need not standard tools) and faster :) -- Francisco M. Marzoa Alonso Nuevo Mundo - Dpto. Informático ICQ#: 62850923 Henri Dunant, 19 - 28036 Madrid tfno: +34 91 343 18 40 ext. 207 España / Spain fax: +34 91 350 28 45
participants (2)
-
Bauer, Juergen -
Francisco M. Marzoa Alonso