On Wed, 14 Nov 2001, willie domingo wrote: > We were asked to open port > 2091/tcp in our firewall, when I tried to research what service is running > on port 2091 it says PRP. I would like to know what is PRP and the risk (if > there are) in opening the said port.
PRP appears to be something called Proximity Report Protocol, though I can't find any standards documentation on it. As for port 2091, it's not one of the ports listed in RFC1700, where all well-known ports are maintained, so it could be anything. It's also pretty much irrelevant what service *usually* runs on port 2091. The only thing that matter is what service *you* run on port 2091. If I ran sshd on port 25, that wouldn't automatically open my machine up to all the SMTP vulnerabilities. Likewise, running sendmail on port 5000 doesn't automatically protect me from those same vulnerabilities. You simply need to be aware of what kind of security risks the program that will be listening on that port has, how robust it is, and how you can track problems with it. --K
