Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Any ideas what ipp, rndc, and ufsd are and whether they need to be open ports?
Code:
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2009-08-08 07:32 BST
Interesting ports on localhost.localdomain (127.0.0.1):
Not shown: 1671 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain
111/tcp open rpcbind
631/tcp open ipp
953/tcp open rndc
1008/tcp open ufsd
3128/tcp open squid-http
3306/tcp open mysql
5555/tcp open freeciv
As you could have found very quickly on google, 631 is printing (the cups service in this case most likely)
953, rndc, is the Remote Name Daemon Control, part of bind.
as for ufsd, I'm actually not sure, most chat about this port seems to be about a worm, but if you run "netstat -plnt" as root you'll see what programs are listening to all of these ports, and will quickly fill in any blanks.
As you could have found very quickly on google, 631 is printing (the cups service in this case most likely)
953, rndc, is the Remote Name Daemon Control, part of bind.
as for ufsd, I'm actually not sure, most chat about this port seems to be about a worm, but if you run "netstat -plnt" as root you'll see what programs are listening to all of these ports, and will quickly fill in any blanks.
I did look but the results were a bit hit and miss. Seems strange that a hosting company would leave open a port for printing?
Seems to give the following:
Code:
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address Stat e PID/Program name
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LIST EN 26937/mysqld
tcp 0 0 0.0.0.0:111 0.0.0.0:* LIST EN 2446/portmap
tcp 0 0 0.0.0.0:1008 0.0.0.0:* LIST EN 11002/rpc.statd
tcp 0 0 0.0.0.0:5555 0.0.0.0:* LIST EN 2889/httpd-matrixsa
tcp 0 0 127.0.0.1:53 0.0.0.0:* LIST EN 26704/named
tcp 0 0 127.0.0.1:8087 0.0.0.0:* LIST EN 17066/python
tcp 0 0 127.0.0.1:631 0.0.0.0:* LIST EN 10858/cupsd
tcp 0 0 0.0.0.0:3128 0.0.0.0:* LIST EN 27603/(squid)
tcp 0 0 127.0.0.1:953 0.0.0.0:* LIST EN 26704/named
tcp 0 0 ::1:53 :::* LIST EN 26704/named
tcp 0 0 :::22 :::* LIST EN 10819/sshd
tcp 0 0 ::1:953 :::* LIST EN 26704/named
What is "named"?
I don't have port 631 open in my iptables file so not sure why it's there.
the port isn't "open" so much, just that there's cups running. You've only scanning your loopback interface, which is naturally not reachable from outside of the box.
Oh, and run that netstat command as root for more information in the output, sorry.
the port isn't "open" so much, just that there's cups running. You've only scanning your loopback interface, which is naturally not reachable from outside of the box.
Oh, and run that netstat command as root for more information in the output, sorry.
Any ideas how to turn it off?
A google search brings a few dodgy options with error messages.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.