Hi Graham,
RMI registry (1099) and RMI server (44444) are used by the JMX layer.
You can configure it in etc/org.apache.karaf.management.cfg.
Another port by default is 8101 (used by the SSH layer) that you can
configure in etc/org.apache.karaf.shell.cfg.
I did the same as you (using netstat):
netstat -nlp|grep -i 19801
tcp6 0 0 :::8101 :::*
LISTEN 19801/java
tcp6 0 0 :::1099 :::*
LISTEN 19801/java
tcp6 0 0 :::44444 :::*
LISTEN 19801/java
tcp6 0 0 :::39170 :::*
LISTEN 19801/java
tcp6 0 0 127.0.0.1:39875 :::*
LISTEN 19801/java
The 39170/39875 are created at startup by Karaf (for the RMI JMX
connector AFAIR).
Regards
JB
On 02/12/2013 10:44 AM, Graham Leggett wrote:
Hi all,
I am currently trying to security harden the default version of karaf. When the
default latest version of v2.3.0 is started up with a default configuration, it
binds to and listens on the following ports:
[minfrin@localhost bin]$ lsof -p 11151 | grep LISTEN
java 11151 minfrin 15u IPv6 357257 0t0 TCP *:59514
(LISTEN)
java 11151 minfrin 68u IPv6 357493 0t0 TCP
localhost:59113 (LISTEN)
java 11151 minfrin 87u IPv6 357859 0t0 TCP
*:rmiregistry (LISTEN)
java 11151 minfrin 88u IPv6 357860 0t0 TCP *:44444
(LISTEN)
java 11151 minfrin 99u IPv6 358277 0t0 TCP
*:ldoms-migr (LISTEN)
Can anyone confirm what services these ports are exposing, and how they can be
controlled, secured, or switched off?
Regards,
Graham
--
--
Jean-Baptiste Onofré
jbono...@apache.org
http://blog.nanthrax.net
Talend - http://www.talend.com
