1748140 Members
3893 Online
108758 Solutions
New Discussion юеВ

about port scaning

 
lin.chen
Frequent Advisor

about port scaning

We have used the security software "ISS" to scan the system.The report shows that we have vulnerablity about "ident".
So i have to stop identd by modify "inetd.conf" and "/etc/services",then i take them effect by run "inetd -c",
But after the second scanning,it still show the vulnerablity about "ident".
Could you tell me what should I doя╝Я

Louis
4 REPLIES 4
Steven E. Protter
Exalted Contributor

Re: about port scaning

Shalom,

Please specify what changes you made to inetd.conf.

Try inetd -k

followed by

inetd

See if it makes any difference. Check /var/adm/syslog/syslog.log

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
lin.chen
Frequent Advisor

Re: about port scaning

I have done as follows
1.comment this line in /etc/inetd.conf
#auth stream tcp6 wait bin /usr/lbin/identd identd

2.comment this line in /etc/services
#auth 113/tcp authentication

3.inetd -c
lin.chen
Frequent Advisor

Re: about port scaning

i saw from netstat -na
tcp 0 0 *.113 *.* LISTEN
How can i close TCP port 113?
louis
Rajesh SB
Esteemed Contributor

Re: about port scaning

HI Louis,

To close TCP port, find out which application service is using this port using "lsof" utility. So you can halt that specific service. If lsof is installed on system. If it is not installed, source is avaliable at

http://hpux.connect.org.uk/hppd/cgi-bin/search?package=on&description=on&term=lsof

Regards,
Rajesh SB