[Gllug] Security & closing ports on certain interfaces.
Paul Brazier
pbrazier at cosmos-uk.co.uk
Thu Feb 14 09:41:36 UTC 2002
If I nmap my home PC (RedHat 7.1) from outside with the firewall down I
see the X11, SMTP and sunrpc ports open.
I only use postfix to send out mail (it comes in by pop3).
I need sunrpc to use NFS on my internal network.
Is it possible to configure these services so they only advertise
themselves as open on my lo and eth0 interfaces (i.e. not on the ppp0
interface)?
If so is it generally speaking just some options in the
/etc/<service>.conf files??
I've tried things like xhost and /etc/hosts.allow and /etc/hosts.deny
and /etc/postfix/main.cf but although I think they stop anyone
connecting without authority they still seem to advertise the ports as
open to nmap.
I know I can shut them off with a firewall but I'm going for a
belt-and-braces approach.
--
Paul Brazier
Group IT
**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the originator.
This footnote also confirms that this email message has been checked
for the presence of computer viruses.
**********************************************************************
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list