Message-ID: <79C9E272CA9DD111A6910060082B1BE37CEA1E@HAPPY> From: Dee McKinney <dmckinney@akfiberstar.com> Date: Mon, 18 Dec 2000 11:03:59 -0900 Subject: RE: [SLE] Closing Open Ports ? Ben, No matter what I do though these ports are still showing up ? Port State Service 111/tcp open sunrpc 931/tcp open unknown 934/tcp open unknown 939/tcp open unknown Is this something that can be dealt with locally ? /Dee <p><p><p><p>-----Original Message----- From: Ben Rosenberg [mailto:brosenb@suse.com] Sent: Sunday, December 17, 2000 10:05 PM To: SuSE Linux English Subject: Re: [SLE] Closing Open Ports ? <p>Greg, /etc/services is just a list of ports associated with services. If one wants to close the ports then you would have to comment out the line associated with them in the inetd.conf file and restart inetd. This is basic Unix/Linux thing .. it works this way on my Solaris (sparc) box, SuSE Linux box and my freeBSD box.. It's inetd that controls these things..not /etc/services. Regards, * Greg Thomas (ethant@pacificnet.net) [001217 22:11]: -**- -**-Yes, but once you kill the process associated with the port, if it is -**-commented out of /etc/services the daemon should not start up -**-the next time init scripts are run. This is an indirect way of -**-doing things, though. Haven't checked this on Linux but Solaris, -**-HP-UX, and OpenBSD behave this way. -**- --
Date: Mon, 18 Dec 2000 12:15:35 -0800 From: "'brosenb@suse.com'" <brosenb@suse.com> Message-ID: <20001218121535.K4114@suse.com> Subject: Re: [SLE] Closing Open Ports ? Are you running the RPC portmapper? Take a look and see if portmap is turned on. It's for NIS and it's associated with NFS as well I believe. * Dee McKinney (dmckinney@akfiberstar.com) [001218 12:09]: -**-Ben, -**- -**-No matter what I do though these ports are still showing up ? -**- -**-Port State Service -**-111/tcp open sunrpc -**-931/tcp open unknown -**-934/tcp open unknown -**-939/tcp open unknown -**- -**-Is this something that can be dealt with locally ? -**- -**-/Dee -**- -**- -**- -**- -**- -**------Original Message----- -**-From: Ben Rosenberg [mailto:brosenb@suse.com] -**-Sent: Sunday, December 17, 2000 10:05 PM -**-To: SuSE Linux English -**-Subject: Re: [SLE] Closing Open Ports ? -**- -**- -**-Greg, -**- -**-/etc/services is just a list of ports associated with services. If -**-one wants to close the ports then you would have to comment out the -**-line associated with them in the inetd.conf file and restart inetd. -**-This is basic Unix/Linux thing .. it works this way on my Solaris -**-(sparc) box, SuSE Linux box and my freeBSD box.. It's inetd that -**-controls these things..not /etc/services. -**- -**-Regards, -**-* Greg Thomas (ethant@pacificnet.net) [001217 22:11]: -**--**- -**--**-Yes, but once you kill the process associated with the port, if it is -**--**-commented out of /etc/services the daemon should not start up -**--**-the next time init scripts are run. This is an indirect way of -**--**-doing things, though. Haven't checked this on Linux but Solaris, -**--**-HP-UX, and OpenBSD behave this way. -**--**- -**--- -**- -**--- -**-To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com -**-For additional commands send e-mail to suse-linux-e-help@suse.com -**-Also check the FAQ at http://www.suse.com/support/faq -**- -- Ben Rosenberg mailto:brosenb@suse.com *************************************** SuSE Inc. 580 Second St Suite 210 Oakland CA 94607 U.S.A Tel: 1-510-628-3380 EXT:5086 Fax: 1-510-628-3381 *************************************** "My opinions are not a reflection of the opinions of SuSE Inc."
From: "john" <john@jmtl.com> Date: Fri, 22 Dec 2000 01:07:13 -0000 Message-ID: <LPBBKPAICKJBFIBNNPJEGEGBDBAA.john@jmtl.com> Subject: RE: [SLE] Closing Open Ports ? lsof is a very powerful tool for looking up things that are open. For example: # lsof | egrep "TCP|UDP" In your case: # lsof | egrep "111|931|934|939" I can tell you straight off that 111 will be the portmap process. Portmap plays a very important roll in RPC process inter communication. I would not recommend disabling it without first of all checking what you are running that needs RPC. For this use: # rpcinfo -p If you are concerned about access to this port then read the portmap man page and look at the section that talks about the use of the /etc/hosts.{allow,deny} files. BTW, if that looks odd to you, try ls'ing it - it's a useful syntax for wildcarding filenames :) If you're not running any firewall options then I'd recommend pmFirewall from: http://www.pointman.org It's close to being the first idiot proof firewall config tool I've come across -- just perfect for me :-) John <p>-----Original Message----- From: Dee McKinney [mailto:dmckinney@akfiberstar.com] Sent: 18 December 2000 20:04 To: 'suse-linux-e@suse.com' Cc: 'brosenb@suse.com' Subject: RE: [SLE] Closing Open Ports ? <p>Ben, No matter what I do though these ports are still showing up ? Port State Service 111/tcp open sunrpc 931/tcp open unknown 934/tcp open unknown 939/tcp open unknown Is this something that can be dealt with locally ? /Dee <p><p><p><p>-----Original Message----- From: Ben Rosenberg [mailto:brosenb@suse.com] Sent: Sunday, December 17, 2000 10:05 PM To: SuSE Linux English Subject: Re: [SLE] Closing Open Ports ? <p>Greg, /etc/services is just a list of ports associated with services. If one wants to close the ports then you would have to comment out the line associated with them in the inetd.conf file and restart inetd. This is basic Unix/Linux thing .. it works this way on my Solaris (sparc) box, SuSE Linux box and my freeBSD box.. It's inetd that controls these things..not /etc/services. Regards, * Greg Thomas (ethant@pacificnet.net) [001217 22:11]: -**- -**-Yes, but once you kill the process associated with the port, if it is -**-commented out of /etc/services the daemon should not start up -**-the next time init scripts are run. This is an indirect way of -**-doing things, though. Haven't checked this on Linux but Solaris, -**-HP-UX, and OpenBSD behave this way. -**- -- -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
I'm doing a roundup of several Linux distributions for an online journal. Due to time/money constraints, I have to use downloaded ISO's, or CheapBytes versions I could get quickly. I happen to own SuSE7.0 Professional, courtesy of SuSE (thank-you SuSE!). In an effort to be fair, I don't want to compare that box set with what SuSE's downloadable version would offer. Can anyone summarize the differences, or is there a page that does so? Thanks, Stew Benedict
Stew Benedict wrote:
I'm doing a roundup of several Linux distributions for an online journal. Due to time/money constraints, I have to use downloaded ISO's, or CheapBytes versions I could get quickly. I happen to own SuSE7.0 Professional, courtesy of SuSE (thank-you SuSE!). In an effort to be fair, I don't want to compare that box set with what SuSE's downloadable version would offer. Can anyone summarize the differences, or is there a page that does so?
AFAIK, functionally they're exactly the same. The only difference is that the boxed versions have more software included (YaST says 3505 packages) as well as lots of source packages. That's it I think. Bye, Chris -- __ _ -o)/ / (_)__ __ ____ __ Chris Reeves /\\ /__/ / _ \/ // /\ \/ / ICQ# 22219005 _\_v __/_/_//_/\_,_/ /_/\_\
participants (5)
-
'brosenb@suse.com' -
Chris Reeves -
dmckinney@akfiberstar.com -
john@jmtl.com -
Stew Benedict