port 111 will be used by rpc processes like NIS and NFS. port 113 is identd, used to identify the "owner" of a connection. port 903... I'm not sure.
If you box is up on the world. I would suggest making a iptables(or equivilent) script that will block all but the wanted ports. IE, having these ports open can be harmfull. I leave these things open on my internal network, but on my public webserver I only open what I need and deny everything else. On Wed, 2005-11-23 at 00:54 +0100, Rutger Wessels wrote: > Hello, > > I administer a debian installation that is connected to the Internet. > When I run nmap, I found the following: > Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2005-11-23 00:29 CET > Interesting ports on xxxxxxxxxx > (The 1657 ports scanned but not shown below are in state: closed) > PORT STATE SERVICE > 22/tcp open ssh > 25/tcp open smtp > 80/tcp open http > 111/tcp open rpcbind > 113/tcp open auth > 903/tcp open iss-console-mgr > > 22,25,80 that are the ones I understand. But what are the other ones? Is > it harmful to have them open? > > I run Debian Stable and apt-get upgrade tells me I am up-to-date. > > regards, > Rutger > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
