Date: Fri, 8 Sep 2000 16:31:08 -0400 From: "David Liu" <dliu@mindspring.com> To: <freebsd-doc@FreeBSD.ORG> Subject: Documentation suggestion Message-ID: <LMECIAEPHBBFPHLIOHMNIEACCAAA.dliu@mindspring.com>
next in thread | raw e-mail | index | archive | help
Hi,
I was trying to secure my Freebsd 4.1 server by following the handbook and
disabled
inetd.conf and as many of the services which I don't need. A nmap port scan
stiil show that
many of my ports are still open. Please address this in your handbook. I
need to know for example why port 12345 is open and how to shut it down.
Thanks for your help and a great product,
David Liu
President
Software By Design, Inc.
Raleigh, NC, USA
____________________________________________________________________________
___________________
Starting nmap V. 2.53 by fyodor@insecure.org ( www.insecure.org/nmap/ )
Interesting ports on localhost (127.0.0.1):
(The 1473 ports scanned but not shown below are in state: closed)
Port State Service
1/tcp open tcpmux
2/tcp open compressnet
3/tcp open compressnet
4/tcp open unknown
5/tcp open rje
7/tcp open echo
9/tcp open discard
11/tcp open systat
15/tcp open netstat
19/tcp open chargen
20/tcp open ftp-data
21/tcp open ftp
22/tcp open ssh
23/tcp open telnet
25/tcp open smtp
53/tcp open domain
70/tcp open gopher
79/tcp open finger
80/tcp open http
87/tcp open priv-term-l
109/tcp open pop-2
110/tcp open pop-3
111/tcp open sunrpc
119/tcp open nntp
138/tcp open netbios-dgm
139/tcp open netbios-ssn
143/tcp open imap2
144/tcp open news
512/tcp open exec
513/tcp open login
514/tcp open shell
515/tcp open printer
540/tcp open uucp
635/tcp open unknown
1023/tcp open unknown
1024/tcp open kdm
1080/tcp open socks
1524/tcp open ingreslock
2000/tcp open callbook
2001/tcp open dc
2049/tcp open nfs
6667/tcp open irc
8080/tcp open http-proxy
12345/tcp open NetBus
12346/tcp open NetBus
31337/tcp open Elite
32771/tcp open sometimes-rpc5
32772/tcp open sometimes-rpc7
32773/tcp open sometimes-rpc9
32774/tcp open sometimes-rpc11
TCP Sequence Prediction: Class=random positive increments
Difficulty=59558 (Worthy challenge)
Remote operating system guess: FreeBSD 2.2.1 - 4.0
___________________________________ rc.conf
______________________________________
# This file now contains just the overrides from /etc/defaults/rc.conf
# please make all changes to this file.
# -- sysinstall generated deltas -- #
ifconfig_ed0="inet 192.168.0.1 netmask 255.255.255.0"
hostname="Finch"
linux_enable="NO"
moused_enable="YES"
gateway_enable="YES"
usbd_enable="NO"
ntpdate_flags="otc1.psu.edu"
ifconfig_xl0="DHCP"
hostname="finch.dyndns.com"
sendmail_enable="NO"
ipv6_enable="NO"
router_enable="NO"
ntpdate_enable="YES"
sshd_enable="NO"
firewall_enable="YES"
firewall_type="SIMPLE"
natd_enable="YES"
natd_interface="xl0"
inetd_enable="NO"
portmap_enable="NO"
# Later change to YES, prevents X-windows from running
kern_securelevel_enable="NO"
kern_securelevel="2"
amd_flags="-a /.amd_mnt -c 1800 -l syslog /host /etc/amd.map /net
/etc/amd.map"
amd_enable="YES"
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?LMECIAEPHBBFPHLIOHMNIEACCAAA.dliu>