Security Risk -- Services enabled on Unix Server

faiza · ‎10-22-2003

Hi,

After a security audit, following security risk items came up. Could somebody pls tell me what are these services for and how can I disable them if they not required?

TIA.
Faiza

Medium - CHARGEN UDP DOS / chargen
Medium - PCCS-mySQL problem / http/www/www-http
Low - Automounter Service Enabled / mountd
Low - CHARGEN service enabled / chargen
Low - Calendar Manager Service Enabled / cmsd
Low - Echo service enabled / echo
Low - HTTP (Web) service enabled / http/www/www-http
Low - Network Lock Manager Service Enabled / nlockmgr
Low - Portmapper Service Enabled / rpcbind
Low - Status Service Enabled / status
Low - Tooltalk Service Enabled / ttdbserverd

Michael Tully · ‎10-22-2003

Well some of them you have what they are. You can safely disable these.

chargen: echos complete character sets back to the connection
echo: echos characters back to the connection

Here's how:
# vi /etc/inetd.conf
Place a '#' at the front of each line.
Save the file, and get the inetd daemon to re-read it's config file.

# inetd -c

Here's a document that might explain a bit more.
http://www.cert.org/advisories/CA-1996-01.html

Anyone for a Mutiny ?

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Security Risk -- Services enabled on Unix Server

Security Risk -- Services enabled on Unix Server

Re: Security Risk -- Services enabled on Unix Server