Hello All,

Can anyone point me in how to close these ports here. I just installed dropline gnome and I now have ports other than 37 and 113 open> Anyway to shutdown these ports and will it hurt my dropline gnome?

37/tcp open time
110/tcp open pop3
113/tcp open auth
143/tcp open imap
872/tcp open unknown
6000/tcp open X11

thanks for any help,

fibster

You can stop the relevant services listening on ports 37, 110, 113 and 143 by editing /etc/inetd.conf (comment out the appropriate lines and run "/etc/rc.d/rc.inetd restart").

IIRC (it's been a /long/ while since I used Dropline), 872 is a port used by XDMCP, which can be disabled in the "login manager" settings.

Port 6000 will be open whenever you run an X server, but should only be listening on localhost.

Can you run an nmap scan from another machine?

Additional:

A great 'firewall' script I have used is the ProjectFiles rc.firewall, available here. Save it as-is to /etc/rc.d/, chmod +x and start it, and nothing is available remotely.

As previously mentioned, you must make manual adjustments to /etc/inetd.conf to disable services.

Dropline (and the other GNOME desktops) use fam as a requirement for Nautilus' features to monitor changes to the filesystem. You can completely disable inetd if you like, by means of issuing "chmod -x /etc/rc.d/rc.inetd". If you'd still like FAM (which is advisable for most users), you should leave it tagged as executable and simply comment most of the extra lines (for those services you want disabled) in /etc/inetd.conf as mentioned above. The last one is all that is needed for GNOME's FAM support:

We'll likely be migrating away from FAM with the 2.14.0 release, as other technologies (ike Gamin) will be taking its place soon.

Hey,

Thank you all for the quick and intelligent responses. Much appreciated.

fibster