Something is odd. I reinstalled RedHat Linux 7.1 on a test system this weekend and I selected to install the workstation the high security settings and booted it up.
I then "nmap -sT":ed myself and realized that 25, 110 and 111 was open, although 25 & 100 was not reachable from the NIC only loopback IF. But rpc was reacheable from the outside. I was wondering, it seems that the people at RH did a pretty good job of not starting every service available as they seem but how could they have missed rpc? Or did I screw something up - I don't think so I took time and answered careful to all the questions in order to install a system with the highest security possible. Earlier RH systems usually came with everything running out of the box, http, ftp, rpc, bind you name it - it got it and it was in heavy need of editing the etc files to turn off what was not needed. I think this is a step in the right direction. I am just fishing for other people's comments on this, private mail is fine as well. -- Anders Pettersson, Test Engineer
