Mailinglist Archive: opensuse-security (636 mails)

< Previous Next >
Re: [suse-security] how can i close port number 6000 & 515 ?
Hi,

On Sunday 11 February 2001 14:59, Vladimir Vecgailis wrote:
> Hi all!
>
> Can me tell somebody tell me, how do i can close a port number 6000 -
> a X-xerver port and a port numer 515 - a printer-port ??

For X: start X with "-nolisten tcp", so if you use xdm you can edit
/var/X11R6/lib/xdm/Xservers and add this to the server startup options.

Printer port (515): Use ipchains:
/sbin/ipchains -A input -p tcp -d 0.0.0.0./0 515 -i eth0 -l -j REJECT
/sbin/ipchains -A input -p udp -d 0.0.0.0./0 515 -i eth0 -l -j REJECT
Replace eth0 with the network interface you are using.

Also, be aware that ftp and ssh might be remotely exploitable on your
machine, so it's a good idea to restrict connections to clients you can
trust, and watch out for the latest patches. Both ftp and sshd honour
/etc/hosts.(deny|allow). You may also consider restricting access
to ssh by adding an "AllowHosts ..." statement to /etc/sshd_config.

Regards,
Martin
--
Martin Leweling
Institut fuer Planetologie, WWU Muenster
Wilhelm-Klemm-Str. 10, 48149 Muenster, Germany
E-Mail (work): lewelin@xxxxxxxxxxxxxxx

< Previous Next >
References