Mukund spewed into the ether:
>>auth
>
>it is remote login, disable the port in /etc/inetd.conf (51* ) dangerous
This is identd!! not rsh or rlogin.
Turn off identd, or use pidentd (because ident can tell what
processes are running as which user.
>>printer
>
>For lan printer only. close if not required, expolit is floating.
Exploit for RH7.0, already fixed in August.
>>kdm
>
>not required
Unless you are using kdm :)
>>squid-http
>
>ok
>
>>X11
>
>again for remote x server ,close, again dangerous
So long as you have not configured X for connections from
all hosts, this should be ok.
(I think you are using X when you ran nmap?)
>>behind - my Saint scan still speaks of a backdoor and ingresshole - >>greek and
>latin I cant figure out.
Post it here, we might figure it out.
>tripwire is better.
Tripwire serves a totally different purpose from saint.
Tripwire is an integrity checker, not a vunerability detection
system. At most it can function as a Host based IDS.
Satan (and nessus) are vunerability scanners).
Devdas Bhagat
--
Ryan's Law:
Make three correct guesses consecutively
and you will establish yourself as an expert.
------------------------------------------------------------
For Valentine's Day shop by Brand, Product, Price, Store and Location!
http://shop.storerunner.com/shop.asp?pdef=home&trsid=3080
----------------------------------------------
The mailing list archives are available at
http://lists.linux-india.org/cgi-bin/wilma/linux-india-help
