Disable unuse port

Disable unuse port

Post by want » Wed, 22 Jan 2003 12:37:35



Folks,

I am using RH8. In order to check the server security level, i used SuperScan
to check the "Listen" port.
Finally, I found the following:

22 [ssh]
23 [telnet]
25 [smtp]
53 [domain]
80 [http]
110 [pop3]
111 [sunrpc]
8000 [irdmi]

Except 110, 111 & 8000, the others are needed...
Therefore, I tried to disable those 3 ports.
How can i do it? Is it related to /etc/services ?
Thx all you kindly folks!

wanto

 
 
 

Disable unuse port

Post by ynotsso » Wed, 22 Jan 2003 13:25:35



> Folks,
> I am using RH8. In order to check the server security level, i used SuperScan
> to check the "Listen" port.
> Finally, I found the following:

> 22 [ssh]
> 23 [telnet]
> 25 [smtp]
> 53 [domain]
> 80 [http]
> 110 [pop3]
> 111 [sunrpc]
> 8000 [irdmi]

> Except 110, 111 & 8000, the others are needed...
> Therefore, I tried to disable those 3 ports.
> How can i do it? Is it related to /etc/services ?
> Thx all you kindly folks!

e.g.:
chkconfig telnet off

Please see the chkconfig man page for more information and usage.

            tony

--
use hotmail.com for any email replies

-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----==  Over 80,000 Newsgroups - 16 Different Servers! =-----

 
 
 

Disable unuse port

Post by Kasper Dupon » Wed, 22 Jan 2003 15:07:28



> Folks,

> I am using RH8. In order to check the server security level, i used SuperScan
> to check the "Listen" port.
> Finally, I found the following:

> 22 [ssh]
> 23 [telnet]
> 25 [smtp]
> 53 [domain]
> 80 [http]
> 110 [pop3]
> 111 [sunrpc]
> 8000 [irdmi]

> Except 110, 111 & 8000, the others are needed...
> Therefore, I tried to disable those 3 ports.

Good choice.

Quote:> How can i do it?

Disable the service listening on the port. On RH you can
disable a service for the current session by typing:

   service name stop

And you can prevent it from being started at next boot
by typing:

   chkconfig name off

I'm not sure exactly which services are listening on those
ports, but I guess it is sendmail on port 110. As root you
can get the name of the programs by typing:

   netstat -tupl

Quote:> Is it related to /etc/services ?

Nope. Don't change /etc/services.

Quote:> Thx all you kindly folks!

> wanto

--
Kasper Dupont -- der bruger for meget tid p? usenet.

for(_=52;_;(_%5)||(_/=5),(_%5)&&(_-=2))putchar(_);
 
 
 

Disable unuse port

Post by ynotsso » Wed, 22 Jan 2003 16:15:30


[...]

Quote:> Disable the service listening on the port. On RH you can
> disable a service for the current session by typing:
>    service name stop
> And you can prevent it from being started at next boot
> by typing:

>    chkconfig name off

> I'm not sure exactly which services are listening on those
> ports, but I guess it is sendmail on port 110. As root you
> can get the name of the programs by typing:
>    netstat -tupl

[...]

"chkconfig --list" will give the service names that chkconfig recognizes
as arguments.

A pop3 daemon listens (by default) on port 110. "lsof -i" will show
all port usage as well as netstat, and /etc/services shows port assignments.

      tony

--
use hotmail.com for any email replies

-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----==  Over 80,000 Newsgroups - 16 Different Servers! =-----

 
 
 

1. How to close the "unuse" port on linux ?

hi,

49/tcp     filtered    tacacs                  
69/tcp     filtered    tftp                    
111/tcp    filtered    sunrpc                  
137/tcp    filtered    netbios-ns              
138/tcp    filtered    netbios-dgm            
139/tcp    filtered    netbios-ssn            
161/tcp    filtered    snmp                    
6000/tcp   filtered    X11

I use nmap to scan my new linux box.

I found that there are quite number of the port opened, but i have
close all application, such as apache, sendmail, portmap, ftp, etc.

And i still get these port opened. Please advise

Thank you.

-qaz

2. Help setting up ipchains/ipmasqadm for VPN client

3. port forwarding disables outgoing traffic on same port

4. So rare binaries for Solaris ???

5. ports disabled

6. recommend server hardware for 2.2.5

7. Disabling FTP ports

8. Does a 3D card interfere with XFree?

9. disabled serial port echoes characters back - how can i stop it

10. Need 'regular' user to enable/disable serial port...

11. Disabling all the Ports ?

12. port 21 disabled for security reasons

13. Disabling serial ports on PC164?