From owner-freebsd-doc Fri Sep 8 13:31: 5 2000 Delivered-To: freebsd-doc@freebsd.org Received: from maynard.mail.mindspring.net (maynard.mail.mindspring.net [207.69.200.243]) by hub.freebsd.org (Postfix) with ESMTP id 66A4337B42C for ; Fri, 8 Sep 2000 13:31:01 -0700 (PDT) Received: from laptop (user-2ivf24j.dialup.mindspring.com [165.247.136.147]) by maynard.mail.mindspring.net (8.9.3/8.8.5) with SMTP id QAA18474 for ; Fri, 8 Sep 2000 16:30:55 -0400 (EDT) From: "David Liu" To: Subject: Documentation suggestion Date: Fri, 8 Sep 2000 16:31:08 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-doc@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I was trying to secure my Freebsd 4.1 server by following the handbook and disabled inetd.conf and as many of the services which I don't need. A nmap port scan stiil show that many of my ports are still open. Please address this in your handbook. I need to know for example why port 12345 is open and how to shut it down. Thanks for your help and a great product, David Liu President Software By Design, Inc. Raleigh, NC, USA ____________________________________________________________________________ ___________________ Starting nmap V. 2.53 by fyodor@insecure.org ( www.insecure.org/nmap/ ) Interesting ports on localhost (127.0.0.1): (The 1473 ports scanned but not shown below are in state: closed) Port State Service 1/tcp open tcpmux 2/tcp open compressnet 3/tcp open compressnet 4/tcp open unknown 5/tcp open rje 7/tcp open echo 9/tcp open discard 11/tcp open systat 15/tcp open netstat 19/tcp open chargen 20/tcp open ftp-data 21/tcp open ftp 22/tcp open ssh 23/tcp open telnet 25/tcp open smtp 53/tcp open domain 70/tcp open gopher 79/tcp open finger 80/tcp open http 87/tcp open priv-term-l 109/tcp open pop-2 110/tcp open pop-3 111/tcp open sunrpc 119/tcp open nntp 138/tcp open netbios-dgm 139/tcp open netbios-ssn 143/tcp open imap2 144/tcp open news 512/tcp open exec 513/tcp open login 514/tcp open shell 515/tcp open printer 540/tcp open uucp 635/tcp open unknown 1023/tcp open unknown 1024/tcp open kdm 1080/tcp open socks 1524/tcp open ingreslock 2000/tcp open callbook 2001/tcp open dc 2049/tcp open nfs 6667/tcp open irc 8080/tcp open http-proxy 12345/tcp open NetBus 12346/tcp open NetBus 31337/tcp open Elite 32771/tcp open sometimes-rpc5 32772/tcp open sometimes-rpc7 32773/tcp open sometimes-rpc9 32774/tcp open sometimes-rpc11 TCP Sequence Prediction: Class=random positive increments Difficulty=59558 (Worthy challenge) Remote operating system guess: FreeBSD 2.2.1 - 4.0 ___________________________________ rc.conf ______________________________________ # This file now contains just the overrides from /etc/defaults/rc.conf # please make all changes to this file. # -- sysinstall generated deltas -- # ifconfig_ed0="inet 192.168.0.1 netmask 255.255.255.0" hostname="Finch" linux_enable="NO" moused_enable="YES" gateway_enable="YES" usbd_enable="NO" ntpdate_flags="otc1.psu.edu" ifconfig_xl0="DHCP" hostname="finch.dyndns.com" sendmail_enable="NO" ipv6_enable="NO" router_enable="NO" ntpdate_enable="YES" sshd_enable="NO" firewall_enable="YES" firewall_type="SIMPLE" natd_enable="YES" natd_interface="xl0" inetd_enable="NO" portmap_enable="NO" # Later change to YES, prevents X-windows from running kern_securelevel_enable="NO" kern_securelevel="2" amd_flags="-a /.amd_mnt -c 1800 -l syslog /host /etc/amd.map /net /etc/amd.map" amd_enable="YES" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message