On Tue, Feb 20, 2007 at 08:01:19PM -0700, Open Phugu wrote: > On 2/20/07, Bray Mailloux <[EMAIL PROTECTED]> wrote: > >I ran an nmap -sS localhost which output > > > >port state service > >13/tcp open daytime > >22/tcp open ssh > >25/tcp open smtp > >37/tcp open time > >53/tcp open domain > >113/tcp open auth > >587/tcp open submission > > > >This BSD box will be serving solely as a router so few of the above > >services are needed (submission, auth, domain, smtp). How do I begin > >closing down these services?
> Turn off inetd to close 13,37,133. > Configure sendmail not to listen on ports 25 and 587, Bray did the scan on localhost. In the default configuration sendmail only listens to ports 25 and 587 on loopback, not the normal network device. There may be some programs running which need a local sendmail. It's usually better to do such scans from another host and/or use netstat to see to which local addresses services are bound. > That leaves 22(ssh) and 53(domain). Regards, Markus
