| Berend De Schouwer on Fri, 1 Sep 2000 10:47:05 +0200 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| Re: GLUG: Securing a system further |
On Wed, 30 Aug 2000 10:45:20 David Russell wrote:
> Thanks to everyone who gave advice, etc about binding daemons to certain
> interfaces.
>
> I am still having problems with inetd. I need to close 21, 23 & 25
>
> Now I have uninstalled Sendmail (totally unneeded), but port 25 still seems
> to be open.
fuser -v -n tcp 25 will tell you which process keeps it open.
So will lsof, but that isn't always installed.
> I cannot seem to find anything in inetd man pages to restrict it to certain
> interfaces of ip addresses. The hosts.allow and hosts.deny files do not seem
> to bite!!
>
> The last thing I want is to get the machine to drop all unwanted packets. I
> went to www.grc.com to look at the port scanning system, and I get a
> "Closed" on all other ports - I want to "Stealth" them - Machine drops
> packets without acknowledging that they exist. How can I do this?
>
> Cheers
>
> David Russell
> Software Support Team Leader
> EXECuLINK Holdings (Pty) Ltd
> South Africa
> Tel: +2711 444-7250
> Fax: +2711 444-7256
> e-mail: davidr@xxxxxxxxxxxxxxx
>
> ========================================================
> There are two major products to come out of Berkeley: LSD and UNIX. - We
> don't believe this to be a coincidence.
> ========================================================
>
>
> ---
> To unsubscribe from this list: send the line "unsubscribe glug" in
> the body of a message to majordomo@xxxxxxxxxxxxx If you have a
> problem unsubscribing, please mail owner-glug@xxxxxxxxxxxx
--
Kind regards,
Berend
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Berend De Schouwer, +27-11-712-1435, UCS