[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] Security concern or not?

Subject: RE: [cobalt-security] Security concern or not?
From: "Drage, Nicholas" <nickd@xxxxxxxxx>
Date: Wed, 1 Nov 2000 10:12:46 -0000
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi,

> > Thanks for the info.  It seemed a little flakey.  I'm 
> > checking into having them run a different scan. 

IMHO you're much better off using "netstat -anp --ip" on the host itself
rather than probing it remotely.

> > One thing I did notice was that finger is running.  How 
> > would I disable it? 
> > I know Linux would use rc.d scripts.  Is it the same for 
> > the Cobalt? 
> 
> On the Qube, it's run from /etc/inetd.conf.  My guess would 
> be that it's the same on the Raq.

It is on the RaQ3i, I would suspect it is in most Linux distributions.

> Comment out the finger entry in inetd.conf.

On any fresh Linux install "grep -v ^# /etc/inetd.conf" is always a good
idea BTW.

>  Restart it.

killall -HUP inetd, then finger root@localhost and you should get
"Connection refused:", one less server to worry about :)

<snip>

-- 
Nick Drage - Security Architecture Team - Demon Internet - Thus PLC

Vi has detected that it is not your default text editor. If you
would like Vi to be your default text editor, please press "Y".

Follow-Ups:
- [cobalt-security] netstat-ing and finger service
  - From: Theodore Jones

Prev by Date: [cobalt-security] Psionic Checklog Permission Settings
Next by Date: Re: [cobalt-security] Vacation Mail Exploit patch for RaQ4
Previous by thread: Re: [cobalt-security] Security concern or not?
Next by thread: [cobalt-security] netstat-ing and finger service

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index