-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Prem Vilas Fortran Rara wrote: | On Sun, 12 Dec 2004 01:17:11 +0800, Dexter Ang <[EMAIL PROTECTED]> wrote: | |>possibly nmap? www.insecure.org I think, but it should come with Mandrake. | | | Sorry I am a newbie. I've already tried NMAP and can only see the | following open ports because I've already disabled unused services: | TCP ports - 4 open ports | 21 [ Ftp => File Transfer Protocol ] | 22 [ Ssh => Remote Login Protocol ] | 80 [ Http => World Wide Web, HTTP ] | 443 [ HttpS => Secure HTTP ] | | What baffles me is why can't I see these services he just listed: | UDP ports - 23 open ports | 39 [ RLP => Resource Location Protocol ] | 42 [ Name => Name Server ] | 43 [ whois ] | 53 [ DNS => Domain Name Server ] | 67 [ bootps => Bootstrap Protocol Server ] | 68 [ bootpc => Bootstrap Protocol Client ] | 69 [ TFTP => Trivial File Transfer Protocol ] | 88 [ Kerberos 5 ] | 111 [ RPC => SUN Remote Procedure Call ] | 123 [ NTP => Network Time Protocol ] | 143 [ imap => Internet Message Access Protocol ] | 161 [ SNMP => Simple Network Management Protocol ] | 162 [ SNMP trap ] | 514 [ syslog ] | 517 [ talk ] | 520 [ router => Router routed RIPv.1, RIPv.2 ] | 749 [ Kerberos Administration ] | 1167 [ phone => Conference calling ] | 1433 [ ms-sql-s => Microsoft SQL Server ] | 1434 [ ms-sql-m => Microsoft SQL Monitor ] | 1512 [ wins => Microsoft Windows Internet Name Service ] | 1900 [ ssdp => Simple Service Discovery Protocol ] | 2049 [ nfsd => Network File System daemon ] | | |>To close those ports, disable the services that are running that use |>those ports. | | | Where can I actually trace these services. I've tried Mandrake's local | tool and ntsysv and was able to put down several of the services | mentioned in NMAP but I can find the 23 services he just listed. Thank | you.
To scan open UDP ports, try as root: # nmap -sU
To close those ports, just edit /etc/services and comment out the lines where you see those ports. Then, restart your network.
There's probably an easier way to do it (like in the GUI), but this method is sure to work. HTH.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFBuzzaLVRiw0xoPkwRAjKfAJ9s7pIQN1SwV4kKKFxcVTPrz2smmwCfST62 cm/4+Ze9FrKfU2WgCk6TIJU= =8Ymb -----END PGP SIGNATURE----- -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
