On Sat, Aug 02, 2008 at 09:03:10PM -0400, Jimmy Wu wrote: > On Sat, Aug 2, 2008 at 6:43 PM, Ansgar Burchardt <[EMAIL PROTECTED]> wrote: > > Hi, > > > > "Jimmy Wu" <[EMAIL PROTECTED]> writes: > > > >> I tried doing an nmap scan on myself the other day and found that tcp > >> port 113 was open. Nmap listed the service as ident. I am trying to > >> remove this service since I don't think I need it, but I can't figure > >> out how. I removed the package pidentd, after which nmap reported the > >> port was still open, but changed its service description to "auth?". > > > > Did you restart xinetd after removing pidentd? > > > > Regards, > > Ansgar > > Thank you - I restarted xinetd and the port seems to be closed now (at > least according nmap and netstat). I guess since ident wasn't > mentioned in xinetd.conf, I didn't think to restart it.
xinetd uses separate configuration files for each of the services it provides (assuming your /etc/xinetd.conf has the line "includedir /etc/xinetd.d" per the Debian default). Part of the pidentd package is an xinetd config file that is placed in the /etc/xinetd.d directory. When you uninstalled pidentd that file was removed, but you still had to restart xinetd for it to reread its config (which no longer included the ident service). > Thanks again to everyone who replied, > Jimmy Wu --Greg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]