When you say "I need to turn off these ports" I am not entirely clear whether you just want to stop the process that is currently running on that port (in which case netstat -a or lsof might point you in the right direction), or whether you want to ensure that no process can EVER bind to that port (in which case please recall that stopping root doing something is nigh impossible).
I think what Steven is trying to stress is that /etc/services (which you mentioned in your original post) has little or nothing to do with the question of what service is running on a given port.
After all, a process running as root can bind any low-numbered port it wants, and serve up any service it sees fit. You can have telnetd on port 80 if you are perverse enough to want it !
Unless it has changed since 11.0, /var/adm/inetd.sec may be of more to you, as it controls what remote machines may access each service/port. You could deny all hosts to port 80 etc., or all except 127.0.0.1
As well as that, you would be well advised to simply not start any unwanted services.
netstat -a will confirm what ports have listeners on them. Finding the daemon that has opened that port to listen is less trivial, however.
Most daemons are started from scripts in /sbin/init.d/ at startup time, based on configuration settings in the parameter files in /etc/rc.config.d
If the daemon doesn't start, the port could be considered "turned off". At least it will not respond to a port scanner, which may be all you want ?
nil illegitimi root-andum
