[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

RH Taroon Beta Open Ports

From: rhldevel assursys co uk
To: rhl-devel-list redhat com
Subject: RH Taroon Beta Open Ports
Date: Mon, 25 Aug 2003 12:50:23 +0100 (BST)

Hi -

I've just done a "complete" install of Taroon on a scratch box, with
iptables firewalling disabled. The following services are listening on
external network interfaces:

Port       State       Service
22/tcp     open        ssh
68/udp     open        dhcpclient
111/tcp    open        sunrpc
111/udp    open        sunrpc
123/udp    open        ntp
1010/udp   open        unknown
6000/tcp   open        X11

ssh (we don't want to lock users out after an upgrade), ntp and dhcpclient
(both manually configured during install) are reasonably justified, IMHO,
but what is the justification for having rpc.statd, portmap and X11
listening by *default* (especially on a machine that hasn't been configured
to use NIS)?

Given the problems that Windows has with network services listening by
default, shouldn't we be learning from their mistakes? Yes, the user
needs to disable firewalling at install time to expose these services, but I
can't help thinking that plenty of naïve users will do so...

Best Regards,
Alex.

Follow-Ups:
- Re: RH Taroon Beta Open Ports
  - From: Thomas Vander Stichele
- Re: RH Taroon Beta Open Ports
  - From: Felipe Alfaro Solana
- Re: RH Taroon Beta Open Ports
  - From: Dax Kelson

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]