On Fri, 13 Aug 2004 21:56:17 -0400, Tong <[EMAIL PROTECTED]> wrote:
Hi,
I've just noticed that my debian testing open many ports by default:
How can I close them?
Firstly open up the rc file for your inetd (e.g. /etc/inetd.conf) and comment out any lines you don't need. This should do (at least) discard, echo, daytime.
Then, determine which programs are responsible for the remaining open ports. Stop them from running and prevent them from starting by default if necessary. How to do this varies on an application-to-application basis; but can probably be forced by removing the package in question (if you aren't using it at all) or using update-rc.d (I think).
If a port is open, and associated with a program which isn't from a debian package and you don't believe you put it there yourself - its time to consider the possibility your machine has been compromised.
Or better yet, Jon should checkout the following link: http://www.debian.org/doc/user-manuals#securing
The harden-doc is outdated except on unstable, so you're better off reading the online version at the above page.
Dana
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
