[Courses] [Security] David's netstat
Raven, corporate courtesan
raven at oneeyedcrow.net
Fri Mar 15 19:08:15 EST 2002
Heya --
Quoth David Merrill (Wed, Mar 13, 2002 at 10:57:36PM -0500):
> Active Internet connections (only servers)
> Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
> tcp 0 0 *:imap2 *:* LISTEN 12644/inetd
> tcp 0 0 *:smtp *:* LISTEN 12644/inetd
If you are accessing this box via imap and sending mail directly
to it, these are normal.
> tcp 0 0 *:postgres *:* LISTEN 30338/postmaster
Do you need your SQL daemon listening on a port?
> tcp 0 0 *:printer *:* LISTEN 27720/lpd
Turn this off if you're not needing print services out from this
box.
> tcp 0 0 *:10000 *:* LISTEN 1993/perl
This is Webmin, right?
> tcp 0 0 *:ssh *:* LISTEN 1205/sshd
Pretty standard.
> tcp 0 0 *:www *:* LISTEN 1071/apache-perl
Keep it if you're using it
> tcp 0 0 *:1024 *:* LISTEN 1062/rpc.statd
> tcp 0 0 *:sunrpc *:* LISTEN 95/portmap
Unless you're using Sun networking foo, you can probably turn
these off. Ditto for their UDP compatriots.
Cheers,
Raven
"Sed, sed, awk. Like duck, duck, goose. Sync, sync, halt. It's the
order of nature."
-- me, after too long a day at work
More information about the Courses
mailing list