Date: Fri, 28 Aug 1998 16:54:59 -0700 (PDT) From: "Jan B. Koum " <jkb@best.com> To: "Scott I. Remick" <scott@computeralt.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: What might use these ports? Message-ID: <Pine.BSF.4.02A.9808281644090.7231-100000@shell6.ba.best.com> In-Reply-To: <199808282245.SAA08761@server.computeralt.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 28 Aug 1998, Scott I. Remick wrote: >For the sake of something else to discuss... :) > >Is there anything legit that might use the following ports? > >513, 514, 111 > >513 is listed in /etc/services as used by "remote login a la telnet" as >well as whod. It says 514 is used by the shell. > >111 is.... > >sunrpc 111/tcp rpcbind #SUN Remote Procedure Call > >So are 513 and 514 for real? How are they legitamately used? And what (in >a normal install) might use 111??? Yes, ports 513 and 514 are for real. However you should try to avoid using rshell and rlogin protocols (which need those ports) and instead use SSH (ftp://ftp.funet.fi/pub/unix/security/login/ssh). How are they legitimately used? You mean, which programs? Uhm.. "man rlogin rsh" As for 111 - this is used by portmapers. You should turn it off if you don't have a need for it. Edit /etc/rc.conf to do so. What programs might use portmaper? The ones which make RPC calls. I personally have yet not had a need for RPC on my system. Solaris on the other hand.. well.. another story: % rpcinfo -p ***.sjsu.edu program vers proto port 100000 4 tcp 111 portmapper 100000 3 tcp 111 portmapper 100000 2 tcp 111 portmapper 100000 4 udp 111 portmapper 100000 3 udp 111 portmapper 100000 2 udp 111 portmapper 100024 1 udp 32783 status 100024 1 tcp 32778 status 100021 1 udp 4045 nlockmgr 100021 2 udp 4045 nlockmgr 100021 3 udp 4045 nlockmgr 100021 4 udp 4045 nlockmgr 100011 1 udp 32788 rquotad 100002 2 udp 32789 rusersd 100002 3 udp 32789 rusersd 100002 2 tcp 32779 rusersd 100002 3 tcp 32779 rusersd 100012 1 udp 32790 sprayd 100008 1 udp 32791 walld 100001 2 udp 32792 rstatd 100001 3 udp 32792 rstatd 100001 4 udp 32792 rstatd 100083 1 tcp 32785 ttdbserver 100021 1 tcp 4045 nlockmgr 100021 2 tcp 4045 nlockmgr 100021 3 tcp 4045 nlockmgr 100021 4 tcp 4045 nlockmgr 100003 2 tcp 2049 nfs 100003 3 tcp 2049 nfs 100026 1 udp 32843 bootparamd 100026 1 tcp 32924 bootparamd [2 pages of other crap sniped] > >Thanks a bunch. Wasn't sure what you were asking. Does the above help? -- Yan >----------------------- >Scott I. Remick mailto:scott@computeralt.com >Network and Information Systems (802)388-7545 FAX:(802)388-3697 >Computer Alternatives, Inc. http://www.computeralt.com > >Theater is life. Television is furniture. > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.02A.9808281644090.7231-100000>