On Sun, 12 Dec 2004 01:07:35 +0800, Prem Vilas Fortran Rara <[EMAIL PROTECTED]> wrote: > Newbie here. I am setting up a webserver. The sysad requires me to > disable unused ports (services) to minimize risk. I used nmap to scan > tcp ports and then a local tool (in Mandrake) to disable unused > services. Sysad tells me some UDP ports are still open. What tool did > he use to scan them? He listed the following:
possibly nmap? www.insecure.org I think, but it should come with Mandrake. > <snip> > > How can I close these ports? Can you recommend a good reading (online) > that talks about hardening servers. Thank you. To close those ports, disable the services that are running that use those ports. That, and running port filtering like iptables, or via a hardware firewall. If your ip is external, you can use grc.com (ShieldsUp) to scan your server and see what other ports are exposed. For good reading, dunno... standard tldp.org? Or maybe install and run bastille linux to figure out other stuff that needs securing? www.bastille-linux.org dex -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
