I ran a tiger scan with output:
# Checking listening processes
--WARN-- [lin003w] The process `portmap' is listening on socket 111 (TCP on every interface) is run by daemon.
--WARN-- [lin003w] The process `portmap' is listening on socket 111 (UDP on every interface) is run by daemon.
--WARN-- [lin002i] The process `rpc.statd' is listening on socket 781 (TCP) on every interface.
--WARN-- [lin002i] The process `rpc.statd' is listening on socket 775 (UDP) on every interface.
--WARN-- [lin002i] The process `rpc.statd' is listening on socket 778 (UDP) on every interface.
this is part 1 of 6
I believe this is the issue. I just have to do some reading to stop portmap and rpc.statd.
This is part of the netstat -panl -A inet output:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:742 0.0.0.0:* LISTEN 3104/rpc.statd
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 2566/portmap
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 2956/exim4
udp 0 0 0.0.0.0:736 0.0.0.0:* 3104/rpc.statd
udp 0 0 0.0.0.0:739 0.0.0.0:* 3104/rpc.statd
udp 0 0 0.0.0.0:111 0.0.0.0:* 2566/portmap
This is a end user machine not a production server.
my recent install notes:
http://users.lmi.net/subjazz/debian3.1.txt
Thanks