[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Security concern or not?
- Subject: RE: [cobalt-security] Security concern or not?
- From: "Drage, Nicholas" <nickd@xxxxxxxxx>
- Date: Wed, 1 Nov 2000 10:12:46 -0000
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi,
> > Thanks for the info. It seemed a little flakey. I'm
> > checking into having them run a different scan.
IMHO you're much better off using "netstat -anp --ip" on the host itself
rather than probing it remotely.
> > One thing I did notice was that finger is running. How
> > would I disable it?
> > I know Linux would use rc.d scripts. Is it the same for
> > the Cobalt?
>
> On the Qube, it's run from /etc/inetd.conf. My guess would
> be that it's the same on the Raq.
It is on the RaQ3i, I would suspect it is in most Linux distributions.
> Comment out the finger entry in inetd.conf.
On any fresh Linux install "grep -v ^# /etc/inetd.conf" is always a good
idea BTW.
> Restart it.
killall -HUP inetd, then finger root@localhost and you should get
"Connection refused:", one less server to worry about :)
<snip>
--
Nick Drage - Security Architecture Team - Demon Internet - Thus PLC
Vi has detected that it is not your default text editor. If you
would like Vi to be your default text editor, please press "Y".