A portscan from an external Internet box onto my webserver gives: PORT STATE SERVICE 21/tcp filtered ftp 22/tcp filtered ssh 23/tcp open telnet 80/tcp open http 254/tcp open unknown 255/tcp open unknown 556/tcp filtered remotefs The only open port on the SuSEfirewall2 script is port 80. I don't want ftp nor telnet. There is no mention of them in the script and I also double checked with yast. What does 'filtered' mean? Can anyone help? SuSE 10.0 Thanks, Steve.
steve wrote:
A portscan from an external Internet box onto my webserver gives:
PORT STATE SERVICE 21/tcp filtered ftp 22/tcp filtered ssh 23/tcp open telnet 80/tcp open http 254/tcp open unknown 255/tcp open unknown 556/tcp filtered remotefs
The only open port on the SuSEfirewall2 script is port 80. I don't want ftp nor telnet. There is no mention of them in the script and I also double checked with yast.
What does 'filtered' mean?
Can anyone help?
SuSE 10.0
Thanks, Steve.
Hello, Close the services (ftp and telnet) Eg: if you use pure-ftpd /etc/init.d/pure-ftpd stop the port 21 will be closed or not open because the service will be stopped Then go to yast --> Security and users ->> Firewall --> Allowed Services. There, check if Services to allow (ftp and telnet) are present, if yes, choose ftp and select remove idem for telnet, If telnet or ssh are not present in the list, you can go to advanced and remove in tcp 21 and 23 Do you understand? See you!!! Frédéric
On Friday 05 May 2006 16:57, Frederic wrote:
steve wrote:
A portscan from an external Internet box onto my webserver gives:
PORT STATE SERVICE 21/tcp filtered ftp 22/tcp filtered ssh 23/tcp open telnet 80/tcp open http 254/tcp open unknown 255/tcp open unknown 556/tcp filtered remotefs
The only open port on the SuSEfirewall2 script is port 80. I don't want ftp nor telnet. There is no mention of them in the script and I also double checked with yast.
What does 'filtered' mean?
Can anyone help?
SuSE 10.0
Thanks, Steve.
Hello,
Close the services (ftp and telnet)
Eg: if you use pure-ftpd /etc/init.d/pure-ftpd stop the port 21 will be closed or not open because the service will be stopped
Then
go to yast --> Security and users ->> Firewall --> Allowed Services. There, check if Services to allow (ftp and telnet) are present, if yes, choose ftp and select remove idem for telnet,
If telnet or ssh are not present in the list, you can go to advanced and remove in tcp 21 and 23
Do you understand?
See you!!!
Frédéric
Hi and thanks but: Neither 21 nor 23 are present in the list and I have no ftp server running nor installed on the system. I avoit telnet altogether. Any ideas? Steve.
On Friday 05 May 2006 11:34, steve wrote:
On Friday 05 May 2006 16:57, Frederic wrote:
steve wrote:
A portscan from an external Internet box onto my webserver gives:
PORT STATE SERVICE 21/tcp filtered ftp 22/tcp filtered ssh 23/tcp open telnet 80/tcp open http 254/tcp open unknown 255/tcp open unknown 556/tcp filtered remotefs
The only open port on the SuSEfirewall2 script is port 80. I don't want ftp nor telnet. There is no mention of them in the script and I also double checked with yast.
What does 'filtered' mean?
Can anyone help?
SuSE 10.0
Thanks, Steve.
Hello,
Close the services (ftp and telnet)
Eg: if you use pure-ftpd /etc/init.d/pure-ftpd stop the port 21 will be closed or not open because the service will be stopped
Then
go to yast --> Security and users ->> Firewall --> Allowed Services. There, check if Services to allow (ftp and telnet) are present, if yes, choose ftp and select remove idem for telnet,
If telnet or ssh are not present in the list, you can go to advanced and remove in tcp 21 and 23
Do you understand?
See you!!!
Frédéric
Hi and thanks but:
Neither 21 nor 23 are present in the list and I have no ftp server running nor installed on the system. I avoit telnet altogether.
Check with Yast --> network services ftp and telnet are handled by xinetd which starts those (and other) services when there is a request.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Friday 2006-05-05 at 16:28 +0200, steve wrote:
The only open port on the SuSEfirewall2 script is port 80. I don't want ftp nor telnet. There is no mention of them in the script and I also double checked with yast.
Then it will be your access router. - -- Cheers, Carlos Robinson -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Made with pgp4pine 1.76 iD8DBQFEW9s6tTMYHG2NR9URAqbtAJ9jnYwaSLn3hT+pWqk02dH5aXM2oQCfbidA yT4tDY4fsYOpVtdOvZ2It3Y= =p7DO -----END PGP SIGNATURE-----
participants (4)
-
Bruce Marshall -
Carlos E. R. -
Frederic -
steve