nmaped myself (why so many ports open + how close ?)
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
nmaped myself (why so many ports open + how close ?)
Hey guys.
ima newbie to security, but my last post was moved by a mod to this forum, so i though i should post this here too.
i used nmap to get a list of open ports on my box and found...
Port State Service
22/tcp open ssh
25/tcp open smtp
111/tcp open sunrpc
631/tcp open ipp
6000/tcp open X11
i must admit that it does not make alot of sence to me, but if my memory servs me correctly....
port 22 is for remote logons,
port 25 is for a smtp mail server.
what are the other 3, i know what X11 is, but do i need that port open ? or is that for remote graphics ???
i am a home user, not wishing to run any servers, should i shutdown most of these open ports ? and if so, how do i do this. i doo not have a firewall (yet) but can i tell linux to simply stop 'listening' on these ports ?
About ipp (InternetPrinting Protocol - port 631), you can edit /etc/cups/cupsd.conf.
Towards the bottom of the file, you can check how access to port 631 is restricted. The default configuration is to allow connections to port631 only from 127.0.0.1.
So, if you do a telnet 127.0.0.1 631, you will get the administration webpage. If you try your local ip, say telnet 192.168.0.2 631, you will get a denied message.
BTW if you turn off cupsd (service cups stop), you will not be able to print... someone correct me if I am wrong.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.