Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Originally posted by Raafi
this is my read-out, I dont know what i am looking at, can anyone tell me if i have any problems?
You have entirely too many services running. Turn off any that you aren't using, like portmap, nfs, and nfslock. Also try running the netstat -pantu command as root so that you can see what services are running on all the ports (if you look at the top of the output, there is a warning that not all services could be identified cause you're not root). From there, turn off services using the 'chkconfig' and 'service' commands like this:
chkconfig <service_name> off
service <service_name> stop
So to turn off portmap you'd do:
chkconfig portmap off
service portmap stop
To display the list of services that are set to start running at boot use:
chkconfig --list | grep on
Since we are posting netstat listing how does mine look? Just curious, I really have no idea what most of this info means. I am behind a NAT router that passes as Stealth at grc.com, running Guarddog Firewall with only the things I absolutlely have to have open. Plus I ran Bastille and had it turn a few things off.
Originally posted by craigevil Since we are posting netstat listing how does mine look? Just curious, I really have no idea what most of this info means.
It really depends on what you need running. You definitely have less services running overall (which is a good thing), but do you need local DNS (dnsmasq) or whatever inetd is running on port 20012? If not then turn them off. In most cases I'd recommend configuring sendmail to listen only for local traffic unless you are running a mail server. However, being behind a packet filtering router helps too, so I think you're in reasonable shape.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.