[1847] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: Services not required?

daemon@ATHENA.MIT.EDU (John \"E.R.\" Jasen)
Tue Jun 9 08:54:53 1998

Date: Tue, 9 Jun 1998 08:29:31 -0400 (EDT)
From: "John \"E.R.\" Jasen" <jjasen1@umbc.edu>
To: linux-security@redhat.com
In-Reply-To: <Pine.LNX.3.95.980609030431.350A-100000@comanche.wildstar.net>
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com

On Tue, 9 Jun 1998, A Dark Elf wrote:

> On Mon, 8 Jun 1998, Stephen Costaras wrote:
> > 21/FTP        (WU-ftpd v2.4.2 BETA 14)
> > 22/SSH        (1.22)
> > 23/TELNET     (Netkit 0.09)
> > 25/SMTP       (Sendmail v8.8.7)
> > 49/TACACS     (TACACS_Plus v4.0.2 BETA/Cisco)
> > 53/DNS        (BIND v8.1.2)
> > 80/HTTP       (Apache v1.2.6 - upgrading to v1.3.0)
> > 110/POP3      (Katie Steven's v1.016)
> > 111/RPC       (Netkit 0.09)
> > 113/IDENTD    (????)
> > 669/MOUNTD    (RPC/Linux Userspace NFS server v2.2beta29)
> > 2049/NFS      (RPC/Linux Userspace NFS server v2.2beta29)
> > 6669/APCUPSD  (UPS Monitoring, read-only from UPS server, already sent
> >                  letter to author for security info).
> 
> The most non-secure services are the r services, and those aren't much at
> risk if you're not running a version with security holes. But I don't see
> why you would actualy need to run all of them. Ssh could replace telnet,

Agreed, unless you happen to field a lot of Wintel boxes and no-one wants
to spring for F-Secure.

> you don't need identd unless you go on IRC

Ummm ... A lot of sites are set to interrogate your identd server when you
access them for (mail|ftp|telnet|etc). It makes a good first defense
against various 'badness'.

> Oh and firewalling ports is still the best
> solution. Unless you need to NFS with someone across the country, you
> should firewall it for outside users.

Generally sound advise.

--
"Frankly, Agent Mulder, alien abduction is the more believable option."
			Agent Skinner, X-Files, 3/09/98 [paraphrase] 
-- John E. Jasen  // DNRC Ambassador to Earth \\  jjasen1@umbc.edu --
-- My views are those of the DNRC only. Prepare to be domesticated --

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post