How do I shut down this ports
Gordon Messmer
yinyang at eburg.com
Thu Aug 7 05:58:15 UTC 2003
Paul Jenner wrote:
> On Mon, 2003-08-04 at 05:54, Louis Garcia wrote:
>
>>111/tcp open sunrpc
>>6000/tcp open X11
>>
>>Should these be open be default?
>
>
> Reading the responses, the most interesting part of your question seemed
> tactfully avoided on the list :-)
>
> If Sun RPC and X over TCP are open by default, should they continue to
> be? How many of the non-tech community use NFS/NIS/NIS+ or connect to X
> remotely without ssh tunneling?
RPC is used for more than just NIS/NFS. Your file manager probably uses
RPC to talk to FAM, so that it can update its displays when files change.
RPC is also blocked by the default networking (firewall) configuration,
so it's basically only available to the local machine.
X... now that's another story. That should probably be firewalled as
well, and will be if you choose a "high security" firewall.
Particularly because X still runs as root, where "portmap" no longer
does. X is a much greater opportunity for attackers. :(
More information about the test
mailing list