From owner-freebsd-questions Thu Jun 29 13:41:53 2000 Delivered-To: freebsd-questions@freebsd.org Received: from adsl-63-194-112-53.dsl.snlo01.pacbell.net (adsl-63-194-112-53.dsl.snlo01.pacbell.net [63.194.112.53]) by hub.freebsd.org (Postfix) with SMTP id 6926B37B789 for ; Thu, 29 Jun 2000 13:41:49 -0700 (PDT) (envelope-from bsd@info-logix.com) Received: (qmail 17887 invoked from network); 29 Jun 2000 20:46:08 -0000 Received: from unknown (HELO ibix) (192.168.1.3) by adsl-63-194-112-53.dsl.snlo01.pacbell.net with SMTP; 29 Jun 2000 20:46:08 -0000 From: "Hank Wethington" To: "Alfred Perlstein" Cc: "BSD" Subject: RE: open ports question Date: Thu, 29 Jun 2000 13:40:46 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <20000629131811.U275@fw.wintelcom.net> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG The inetd.conf file was edited over 3 months ago, the machine has had many reboots since then. Forgive me for being hesitant about listing open ports. I have security for port scans but direct access to a port. If there is a know exploit it can't be stopped if I'm not looking on. the ones I currently have open are: 79 Finger 111 Portmapper (in rc.conf I have portmap_enable="NO" so why is this coming up?) 119 NNTP which is not running as the machine is not acting as a news server 143 IMAP, again not running that I know of 540 UUCP 1024 ??? and a few others. I can block all of them with my fire wall rules, but I'm wondering why they're open in the first place. Hank -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Alfred Perlstein Sent: Thursday, June 29, 2000 1:18 PM To: Hank Wethington Cc: BSD Subject: Re: open ports question * Hank Wethington [000629 12:47] wrote: > Greetings, > > I was checking security on my machine by doing a portscan when I noticed > some ports open that I felt shouldn't be. I would like to know how to close > them. > > I have already taken out all the needed info from inetd.conf, like finger, > but the finger port is listening. It won't give info, but it is listening. > Others are listening too. Your help is appreciated. Have you hup'd inetd? As far as the rest of the ports you're asking about, how exactly are we to know what they are if you don't tell us which ports? -Alfred To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message