Its a dedicated server.
Even if those services were running, why when all ports are set to DROP, are they showing as open? To me this means a defective firewall, surely?
I am more concerned with why the rule isn't working so I can learn about iptables and WTF is going on, as opposed to just stopping services.
Any packets to those ports should be dropped at network level with no response whatsoever, showing nothing is even there, am I not correct in this assumption?
I HAVE NOT opened those ports. This is an example of my ruleset. Only port 80 should respond, surely? I don't understand. Is the port scanner an "established" connection and therefore being accepted? WTF is going on?
-P OUTPUT ACCEPT
-P INPUT DROP
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p tcp --dport 80 -j ACCEPT