LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 11-01-2004, 05:56 AM   #1
chil326
Member
 
Registered: Jul 2004
Location: Paris, France
Distribution: mandriva LE 2005
Posts: 86

Rep: Reputation: 15
shorewall and mandrake, some ports open i can't close


Hello!
i use Mandrake 10.
i configured the firewall to have no port open except 4661 which is edonkey.
but i still have some ports open i just i can't close, and i don't understand why.
i join configuration files of shorewall.
thanks for the help!

results of nmap -p 0-65535 localhost :
-------------------------------------------------------------------------------------------
(The 65532 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
631/tcp open ipp
4661/tcp open unknown
6000/tcp open X11
32768/tcp open unknown
--------------------------------------------------------------------------------------------
/etc/shorewall/policy :
---------------------------------------------------------------------------------------------
###############################################################################
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
# The FOLLOWING POLICY MUST BE LAST
loc net ACCEPT
fw net ACCEPT
net all DROP info
all all REJECT info
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
----------------------------------------------------------------------------------------------
/etc/shorewall/rules :
-----------------------------------------------------------------------------------------------
##############################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER
# PORT PORT(S) DEST LIMIT SET
ACCEPT net fw tcp 4661 -
ACCEPT loc fw tcp 4661 -
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
-------------------------------------------------------------------------------------------------
 
Old 11-01-2004, 10:28 PM   #2
m4dj4ck
Member
 
Registered: Aug 2004
Location: the coven
Distribution: slackies
Posts: 55

Rep: Reputation: 15
sometimes, it is better to completely disable the unneccesary ports rather than using firewall to block it. I think you can safely disable X server's port listening by initiating :-

/usr/X11R6/bin/startx -- -nolisten tcp

This will disable listening port on 6000.

For port 631/IPP, you can disable unless you wish to have printing services on your Mandrake. Anyway, to remove unneccesary services, go to Mandrake Control Center->System-->Services. Then choose any other services you dont need. Cheers!

-m4-
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Can't close all ports using shorewall onmountain Linux - Security 4 10-31-2005 04:00 PM
Which ports should I keep open and which close?? apache Linux - Security 3 07-19-2004 08:31 AM
How do i close my open ports??? Synth218 Slackware 10 07-06-2003 02:31 PM
open ports... how do i close them? prodigius Linux - Security 3 01-18-2002 08:35 AM
how to close open ports zyan Linux - Security 3 08-04-2001 08:11 PM


All times are GMT -5. The time now is 08:09 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration