On 09/14/2007 11:15 AM, PETER EASTHOPE wrote:
Folk,
Some services listed in /etc/services, might never be intended
to operate on a specific machine. bootps and finger are likely
examples.
In interest of security, is there any benefit in commenting out
unused services?
No, you would disable services through changing /etc/inetd.conf (read
"man update-inetd") and stopping programs in /etc/init.d/.
Other services, such as telnet, are needed in my LAN but
should be blocked to all other systems. Are the settings
in /etc/hosts.allow and hosts.deny sufficient for this?
[...]
A firewall would create an extra line of defense.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
