[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Ports safe to close?
- Subject: RE: [cobalt-security] Ports safe to close?
- From: Clive Harper <CHarper@xxxxxxxxxxxx>
- Date: Wed, 29 Aug 2001 09:25:05 +0100
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> When running an nmap scan on one of my servers with IPChains
> installed and running, I get these open ports:
> 1080/tcp open socks
> 2000/tcp open callbook
> 2001/tcp open dc (this is digichat)
> 6667/tcp open irc
> 32771/tcp open sometimes-rpc5
> 32772/tcp open sometimes-rpc7
> 32773/tcp open sometimes-rpc9
> 32774/tcp open sometimes-rpc11
I just ran nmap against one of our development RAQ's and it
came back with
3001/tcp open nessusd
I have never installed nessus on this box and it has never been
open to the internet as it is a development box.
The strange thing is though I cannot find any reference to nessus
on the RAQ, no users, no files, nothing.
Could nmap be simply thinking that nessusd is running on that port
because of the port number?
If so how can I close the port?
Thanks.
----
Clive Harper