Date: Wed, 20 Mar 2002 03:56:37 +1200 (NZST) From: Andrew McNaughton <andrew@scoop.co.nz> To: Julian Stacey <jhs@bim.bsn.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: ports 1021 1022 1023 & 587 ? Message-ID: <20020320035312.G68403-100000@a2> In-Reply-To: <200203191511.g2JFBbG55810@jhs.muc.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 19 Mar 2002, Julian Stacey wrote:
> On a 4.5-RELEASE firewall ports 1021 1022 1023 are shown open by
> /usr/ports/security/portscanner, but not listed in /etc/services.
>
> Are they daemons doing auto decrement allocation from 1024 ?
> ( I'm using ipfw firewall, not using diverts (yet), not using X server,
> am using various other daemons inc. nfs amd lpd timed whod etc)
>
> Should I block some 1023 port range with ipfw on non {localhost & local
> ethernet} interfaces ? What range ?
If you are not sure what is running on the port, then why on earth is the
port allowed through the firewall at present?
Block everything coming in by default, and then open up only the ports you
need.
Andrew
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020320035312.G68403-100000>