[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: ports 111, 113, and 119

From: Statux <statux bigfoot com>
To: <redhat-list redhat com>
Subject: Re: ports 111, 113, and 119
Date: Thu, 31 May 2001 01:16:43 -0400 (EDT)

111: I was once told that sunrpc is required for a lot of stuff to run and
should be left alone.

113: identd is required by a ton of stuff you connect to (including IRC).
leave this running.

119: This is nntp, enabled via /etc/inetd.conf or xinetd. If you don't run
a news server.. disable it right away.

Unless you have a case where a port is open but nothing is running on it
(the tcp wrapper (tcpd) does this), it's usually just a case of keeping
all your packages 100% up-to-date and ahead of the exploits.

On Wed, 30 May 2001, Michael Turner wrote:

> Can anyone tell me what is on these ports a netstat dump tells me this:
> tcp        0      0 0.0.0.0:113             0.0.0.0:*               LISTEN
>     578/identd
> tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN
>     432/portmap
> nothing seems to be running on 119. I have monitored a lot of activity from
> various ip's on my firewall log hitting these ports. Are Identd and portmap
> security holes? Just inquisitive. Thanks.
>
> Mike
> _________________________________________________________________
> Get your FREE download of MSN Explorer at http://explorer.msn.com
>
>
>
> _______________________________________________
> Redhat-list mailing list
> Redhat-list redhat com
> https://listman.redhat.com/mailman/listinfo/redhat-list
>

-- 
-Statux

Follow-Ups:
- Re: ports 111, 113, and 119
  - From: Mikkel L. Ellertson

References:
- ports 111, 113, and 119
  - From: Michael Turner

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]