[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] Ports safe to close?

Subject: RE: [cobalt-security] Ports safe to close?
From: Clive Harper <CHarper@xxxxxxxxxxxx>
Date: Wed, 29 Aug 2001 09:25:05 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

 
> When running an nmap scan on one of my servers with IPChains 
> installed and running, I get these open ports:
> 1080/tcp   open        socks
> 2000/tcp   open        callbook                
> 2001/tcp   open        dc (this is digichat)
> 6667/tcp   open        irc                     
> 32771/tcp  open        sometimes-rpc5          
> 32772/tcp  open        sometimes-rpc7          
> 32773/tcp  open        sometimes-rpc9          
> 32774/tcp  open        sometimes-rpc11

I just ran nmap against one of our development RAQ's and it
came back with

3001/tcp open nessusd

I have never installed nessus on this box and it has never been
open to the internet as it is a development box.

The strange thing is though I cannot find any reference to nessus
on the RAQ, no users, no files, nothing.

Could nmap be simply thinking that nessusd is running on that port
because of the port number?

If so how can I close the port?

Thanks.

----
Clive Harper

Prev by Date: Re: [cobalt-security] cobalt kb - resetting root/admin password
Next by Date: RE: [cobalt-security] Ports safe to close?
Previous by thread: Re: [cobalt-security] Ports safe to close?
Next by thread: RE: [cobalt-security] Ports safe to close?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index