Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I started probing my servers for holes, and open ports, and I found port 111 sunrpc port open on 2 of my server. Does anyone know what this is and what it does. If it is not neccesay how do you turn it off, I do not see it in inet.d services list.
The portmapper is only "directory enquiries" for RPC on your machine, i.e. it will tell a requesting program which port another RC service runs on. However, I can still find out which RPC programs are running by "dialling" all your port numbers and deducing what is running based on the output. Nessus does a fine job of that. It is therefore essential that you block all ports at your firewall that you do not explicitly want people to connect to. I have seen many a firewall configured to block portmapper that happily let me connect and exploit tooltalkd (as part of a legitimate pentest assignment I might add ;>).
Not suggesting that this is _your_ config, just adding info for anyone else reading the thread. ;>
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.