Doug Riddle <[EMAIL PROTECTED]> writes: netstat -nlp should be informative. will tell you what is listening on which port and link it to the process. If you have it, lsof -i will do this as well.
check your /etc/inetd.conf and comment out anything you don't want running. then 'pkill -HUP inetd'. take a look in /etc/init.d and look for standalone services there. 'man update-rc.d' to find out how to use the /usr/sbin/update-rc.d script in debian to manage startup scripts. Or just put "exit 0" near the top of any script (right after the "#!/bin/bash") and that will keep that service from running. Debian is really good about not replacing things in /etc/ that you modify when doing an apt-get upgrade so you won;t have to remember to keep doing that every time you update if you take this approach. And for a defense in depth approach, set up a local iptables firewall. If you don't want anything exposed to the outside, it should be pretty easy to set up to allow all stateful connections outbound and otherwise deny inbound connections. There are lots of easy-firewall management frontends available in debian (synaptic and aptitude are your friends) apt-get update && apt-get upgrade regularly and you should be in pretty good shape. There are many good articles online about locking down (hardening) linux boxes. try www.debianplanet.org for debian-specific linkage. onlamp.com also has some good stuff. > Trouble shooting Linux is not something I am well > aquainted with. Geeze, it just never comes up. > Configuring, updating, or installing, yes, but trouble > shooting? Very seldom. I need to attend more > meetings. > > When I try the suggestions mentioned, I either get > nothing, as in,just another command prompt, or a list > of approved commands, as if I had typed PS -- help. > > I am running Debian stable. > > Dell GX1 > Sony 21 inch regular (+ 4 years old) > 128 MB RAM > plenty of room on the HDD > > When I run those commands, if I get nothing or > nonsense, am I not running Bind? I do not want or > need to run Bind. > > What logs could I check to see if it is loading, or > trying to load? > > Grins, > > Doug > > > --- Dustin Puryear <[EMAIL PROTECTED]> wrote: >> At 06:54 PM 10/10/2003 -0700, you wrote: >> >> >The Bind error worries me. The others do not as I >> am >> >using them or have them patched. Bind is still a >> bit >> >of a puzzle to me. When I run the suggested >> command >> >"named -v" I get "command not found". I had some >> >> There are several ways to invoke ps, and most of >> them use very little space. >> >> Under Linux try 'ps -C named': >> >> # ps -C named >> PID TTY TIME CMD >> 23300 ? 00:00:00 named >> 23302 ? 00:00:00 named >> 23303 ? 00:05:03 named >> 23304 ? 00:00:00 named >> 23305 ? 00:00:42 named >> >> You can also try just 'a' and 'x' for a bit more >> information: >> >> # ps ax | grep named | grep -v grep >> 23300 ? S 0:00 named -u named -t >> /home/named >> 23302 ? S 0:00 named -u named -t >> /home/named >> 23303 ? S 5:03 named -u named -t >> /home/named >> 23304 ? S 0:00 named -u named -t >> /home/named >> 23305 ? S 0:42 named -u named -t >> /home/named >> >> Now I'm just getting silly: >> >> # ps ax | head -1 ; ps ax | grep named | grep -v >> grep >> PID TTY STAT TIME COMMAND >> 23300 ? S 0:00 named -u named -t >> /home/named >> 23302 ? S 0:00 named -u named -t >> /home/named >> 23303 ? S 5:03 named -u named -t >> /home/named >> 23304 ? S 0:00 named -u named -t >> /home/named >> 23305 ? S 0:42 named -u named -t >> /home/named >> >> What can I say? I like to have headings. >> >> And for those on a real craze: >> >> C:\>pslist | head -8 | tail -1 & pslist | findstr >> named >> Name Pid Pri Thd Hnd Mem User Time >> Kernel Time Elapsed Time >> named 1240 8 3 101 16004 0:00:09.543 >> 0:00:09.814 1:00:11.973 >> >> Okay, okay. I'm not really running named under >> Windows. >> >> Can I do my check from Windows though? Maybe that's >> my main box that I use >> for administration: >> >> C:\>plink -batch serv "ps ax | head -1" & plink >> -batch serv "ps ax" | >> findstr named >> PID TTY STAT TIME COMMAND >> 23300 ? S 0:00 named -u named -t >> /home/named >> 23302 ? S 0:00 named -u named -t >> /home/named >> 23303 ? S 5:04 named -u named -t >> /home/named >> 23304 ? S 0:00 named -u named -t >> /home/named >> 23305 ? S 0:42 named -u named -t >> /home/named >> >> So it can be done. >> >> What was the question again? >> >> >> --- >> Dustin Puryear >> http://www.puryear-it.com >> >> >> _______________________________________________ >> General mailing list >> [email protected] >> http://brlug.net/mailman/listinfo/general_brlug.net > > > __________________________________ > Do you Yahoo!? > The New Yahoo! Shopping - with improved product search > http://shopping.yahoo.com > > _______________________________________________ > General mailing list > [email protected] > http://brlug.net/mailman/listinfo/general_brlug.net > -- Scott Harney<[EMAIL PROTECTED]> "...and one script to rule them all." gpg key fingerprint=7125 0BD3 8EC4 08D7 321D CEE9 F024 7DA6 0BC7 94E5
