I was wondering if you guys would be so kind as to look at my nmap results.
I know I should disable X11 but I've never figured out how to actually get that port closed. Also I don't think I need port 37 open... do I? auth is for ssh right? and netbios-ssn and microsoft-ds are for samba. Are these secure to have open? Or should I only open them when I need to use samba?
nathacof@smolderingAshPit:~$ nmap localhost
Starting nmap 3.75 ( http://www.insecure.org/nmap/ ) at 2004-11-19 11:33 EST
Interesting ports on localhost (127.0.0.1):
(The 1656 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
22/tcp open ssh
37/tcp open time
113/tcp open auth
139/tcp open netbios-ssn
445/tcp open microsoft-ds
631/tcp open ipp
6000/tcp open X11
Thanks in advance for your help.
Why would you want to close X11?
Take a look in /etc/inetd.conf, /etc/rc.d/rc.inet1 & inet2. You can also disable some services by chmod -x /etc/rc.d/rd.sshd as one example.
Why would I not want to disable X11? I don't need my screen forwarded to another computer or anything like that.
And thanks I'll check that out.
Construct - You do not want 6000 open infact my friends box got rooted last weekend and they started that service. It is a huge security risk and if you didn't turn on the service I would check you logs to see if you got rooted too but if not here is the way to stop the port.
startx -- -nolisten tcp
after reading your post i run 'nmap localhost' on my box and i saw that I have got the same number of ports open plus a similar one - I gather from the various replies to your post that could be safer if they are close i.e.: port 6000/X11 -
so, my question is: how do I close the ports that I don't want to be open?
thanx`for the help
Most of the time you can do a search on google for that port, and it will usually tell you what it is and how to turn it off.
Usually ports are turned on and off by the service that uses them. So if you turn off ftp then port 21 closes.
You can also deny all except on your firewall if you want to use that service internally.
I hope this helps,
Most of the time you can do a search on google for that port, and it will usually tell you what it is and how to turn it off. Usually ports are turned on and off by the ..............
I run nmap on verbose prompt and it gave me port 6000/X11 as closed -
the easiest way to "shut down" the port opening, is to set the options in the proper ARG
you will see the last serverargs=""
simply add this args "-nolisten tcp"
you can restart the X
or reboot :)
I also try "nmap" on my box and got port 6000 open for X11.
If wanted to just close port 6000...
Just edit: /etc/inittab
change id:5:initdefault: to id:3:initdefault:
Then reboot the box.. port 6000 was not open anymore.
I hope it answers your query.