Hi there, I recently ran a scan on my Web Server (SuSE 6.4), and in addition to the expected TCP services (http, ssh, smtp et al.), it claimed that the UDP ports 135 (msrpc-epmap), 137 (netbios-ns) and 139 (netbios-dgram) were open. I can see no reason why they should be - they are not enabled in inetd.conf(I ran harden_suse when i first set up the machine), and I am not running Samba. The only "non-suse" thing that I am running on the machine is Chilisoft-ASP, but I cannot see why that would have MS specific ports open. Does anyone know what it might be that returns this result? Many thanks, Iain
Hi Iain, try lsof -iTCP:135 to see which service opened that port.
Hi there,
I recently ran a scan on my Web Server (SuSE 6.4), and in addition to the expected TCP services (http, ssh, smtp et al.), it claimed that the UDP ports 135 (msrpc-epmap), 137 (netbios-ns) and 139 (netbios-dgram) were open.
Xmas' comming... *<:-) * * Ralf 'coko' Koch * mailto:info@formel4.de * --- Viren machen auch etwas Nützliches, z.B. Windows löschen.
Hi, At 21:25 19/12/00 +0000, you wrote:
expected TCP services (http, ssh, smtp et al.), it claimed that the UDP ports 135 (msrpc-epmap), 137 (netbios-ns) and 139 (netbios-dgram) were open. I can see no reason why they should be - they are not enabled in
As root, try running "netstat -nap". It will show all open ports and the processes that own them. Hopefully that will give you a clue as to the cause. John
participants (4)
-
Iain Gray
-
John Trickey
-
Ralf Koch
-
Ørnulf Nielsen