[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Ports safe to close?
- Subject: Re: [cobalt-security] Ports safe to close?
- From: Rik Thomas <rikt@xxxxxxxxxxxxxxxx>
- Date: Tue, 28 Aug 2001 20:29:08 -0400 (EDT)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Tue, 28 Aug 2001, Carrie Bartkowiak wrote:
> When running an nmap scan on one of my servers with IPChains
> installed and running, I get these open ports:
> 1080/tcp open socks
> 2000/tcp open callbook
> 2001/tcp open dc (this is digichat)
> 6667/tcp open irc
> 32771/tcp open sometimes-rpc5
> 32772/tcp open sometimes-rpc7
> 32773/tcp open sometimes-rpc9
> 32774/tcp open sometimes-rpc11
>
> I need to leave DigiChat open - what others can I close safely?
> I'm wondering why my PMFirewall ruleset didn't specify these ports be
> closed, especially the irc port. Hmm.
> --
> CarrieB
> If someone with multiple personalities threatens to kill himself, is
> it considered a hostage situation?
I would close everything except digichat, unless you are specifically
running something that you *know* about on those ports. I would
definitely close the irc port if you don't use it, that is a favorite of
script kiddies.
--
Rik Thomas
rikt@xxxxxxxxxxxxxxxx http://SmartBackups.com
Is your Website Smart? Automated Website backups. Free 30Day trial!
Ph: 302.672.7314 Fx: 302.672.7315 ICQ: 879956