HPE Community
Operating System - HP-UX
1838193 Members
4120 Online
110125 Solutions
New Discussion

Re: I need an always ON service!!

 
SOLVED
Go to solution
Enrico Venturi
Super Advisor

‎11-15-2004 03:26 AM

‎11-15-2004 03:26 AM

I need an always ON service!!

Hello colleagues,
for security reasons the system platform administrator decided to inhibit all the following services:
1. R command functionality:
1. rlogin
2. remsh
3. rcp
4. rwho
5. rpc.cmsd
6. rpcbind
7. rexec
2. FTP
3. TFTP
4. Network File System (NFS).
5. Traceroute
6. Finger and talk applications.
7. Echo (udp/tcp)
8. Chargen (tcp)
9. Time (tcp)
10. Daytime (tcp)
11. SNMP Agent

Unfortunately I have an application which check for the alive status of the machines by connecting to a certain port, currently the port 13, which is being disabled.
Are there any services always running but the previous listed ones?
Thanks a lot

Enrico
0 Kudos
Reply
6 REPLIES 6
Rodney Hills
Honored Contributor

‎11-15-2004 03:29 AM

‎11-15-2004 03:29 AM

Solution

Re: I need an always ON service!!

Port 22 is used by secure shell "ssh".

HTH

-- Rod Hills
There be dragons...
Reply
Jeff Schussele
Honored Contributor

‎11-15-2004 03:31 AM

‎11-15-2004 03:31 AM

Re: I need an always ON service!!

Ciao Enrico,

Try SSH port - 22 TCP
and/or telnet port - 23 TCP

HTH,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Reply
Tomek Gryszkiewicz
Trusted Contributor

‎11-15-2004 03:35 AM

‎11-15-2004 03:35 AM

Re: I need an always ON service!!

It depends on the system, and what for it's used - i think you should ask you administrator. But, if you are testing the open ports, try maybe this:
25 - sendmail
80 - http
22 - sshd
Or just ping the machine instead of opening the connection to it.

-Tomek
Reply
Jeff Schussele
Honored Contributor

‎11-15-2004 03:43 AM

‎11-15-2004 03:43 AM

Re: I need an always ON service!!

You might also consider NTP - Network Time Protocol - 123 UDP

Cheers,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Reply
Fred Ruffet
Honored Contributor

‎11-15-2004 03:51 AM

‎11-15-2004 03:51 AM

Re: I need an always ON service!!

printer (515/tcp) and X11 (6000/tcp) may also be running services.

Regards,

Fred
--

"Reality is just a point of view." (P. K. D.)
Reply
Armin Kunaschik
Esteemed Contributor

‎11-16-2004 08:31 PM

‎11-16-2004 08:31 PM

Re: I need an always ON service!!

The list looks quite incomplete... from the security point of view.
I'm missing for instance telnet and sendmail.
Get a list of open ports and services with
"netstat -a" and lsof.
But that's not the point!

You should define a state where you consider the machine alive!
Monitoring port 13 (daytime) does not tell you that your application is alive.
It only tells you that the kernel answers network queries.
You can even ping your machine. But the result is: The host responds to icmp queries. Not more!

Monitor your application instead of unnecessary ports, e.g. frequently get http pages, issue sql queries etc.!!

Hope this helps,
Armin
And now for something completely different...
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.