Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Disabling services....

Status
Not open for further replies.
fenris

fenris

Programmer
May 20, 1999
824
CA
I am running mandrake 7. I am trying to disable services that I am not using. I commented the servies out in inetd.conf and run killall -HUP inetd. After that I run nmap and the services are reported to still be runing. I comment them out in /etc/services and the still run. Where else can I look to disable services? <p> fenris<br><a href=mailto:fenris@hotmail.com>fenris@hotmail.com</a><br><a href= > </a><br>
 
Sort by date Sort by votes
That's a little strange - if you have commented them out of inetd.conf and sent HUP to inetd, then the services should stop.&nbsp;&nbsp;What happens if you reboot the server?&nbsp;&nbsp;Do the services still appear?<br><br>On a related note, you probably want to go back to /etc/services and uncomment the items that you commented out.&nbsp;&nbsp;This file is little more than a text database that maps port numbers and protocols to service names.&nbsp;&nbsp;For example, it will map &quot;smtp&quot; to port 25 as a tcp service. <p> <br><a href=mailto: > </a><br><a href= > </a><br>--<br>
0 1 - Just my two bits
 
Upvote 0 Downvote
Thanks for the info, about uncomment the items in /etc/services I had did that because the material I was reading had explained this. I had the same idea as you about rebooting the server, but the services still came back. The odd thing though, is that when I first ran nmap it said that I had about 10 or 12 services running(ftp,telnet,smtp,pop3, etc). I looked up how to turn off the services and the material pointed me to the inetd.conf and comment the services out. When I looked at the file, all the services except for ftp were already commented out. I thought this was odd, so I commented ftp out and I did the killall -HUP inetd and I ran nmap again, all the services should up from before. So I went to search the internet for possible solutions. Since mandrake is very similar to RH6, I tried some of the solutions I found for RH. But they didn't work, linuxconf didn't help, I couldn't find the right service to shut down, they simply were not listed. I remembered that mandrake had a graphical configuration tool, DrakConf. I tried this and went to the security settings. There were just three options there, low, medium & high. So I choose high, it went through all this mumbo-jumbo and disabled all the external services and setup an IP Masq firewall. I thought this was great, killed two birds with one stone. I checked again with nmap and it found nothing. Unfortunately I still wanted to run samba, so I turned it back on and ran nmap, it detected port 139 open(Note: I ran nmap to scan the linux box from both it's internal and external ip addresses and it detected the same ports open on both scans every time I did it).<br><br>I thought this was pretty good so I decided to test it out at <A HREF=" TARGET="_new"> and the shields up program. Well I am pleased that the shields up program could not detect anything except that the ports must be cloaked by a very advanced operating system!<br><br>I would like to figure out where all this stuff was set. I have no clue where the firewall is setup or where the services where enabled/disabled. I have read material that states the firewall should be in /etc/rc.d/rc.firewall but it is not there and as far as enabling/disabling the services go, everything that I have read points to /etc/inetd.conf.<br><br>I have a funny feeling that the answers are probably the same for both RH and Mandrake.<br><br><br>Thanks... <p> fenris<br><a href=mailto:fenris@hotmail.com>fenris@hotmail.com</a><br><a href= > </a><br>
 
Upvote 0 Downvote
That is exactly why I hate GUI's or menu-driven configurators.&nbsp;&nbsp;You run them to get the job done in the hopes that you'd learn as you go, but you don't get a chance to see what was done.&nbsp;&nbsp;When you see what was done it is nothing like you were told to do it on the command line.&nbsp;&nbsp;The thing I like about the SMIT interface in AIX is that you can &quot;do&quot; whatever your doing but before you commit to it you can hit F6 to see the command before it runs or you can use the smit.script file in ~ to write the script.&nbsp;&nbsp;It still doesn't beat figuring it out on your own, that's the best teacher. <p>Jon Zimmer<br><a href=mailto:b0rg@pcgeek.net>b0rg@pcgeek.net</a><br><a href= Aetea Information Technology</a><br>The software required `Windows 95 or better', so I installed Linux.<br>
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

SamBones
  • Locked
  • Question
How Do I Start/Stop Systemd Services as a non-root User?
Replies
2
Views
635
gbaughma
gbaughma
blinder
  • Locked
  • Question
Apache frontending MS Reporting Services
Replies
0
Views
50
blinder
blinder
farhsyed
  • Locked
  • Question
How to disbale unused/redundant groups, services.
Replies
0
Views
38
farhsyed
farhsyed
paublo
  • Locked
  • Question
postfix slowing other services down
Replies
1
Views
45
paublo
paublo
itsp1965
  • Locked
  • Question
Disabling UnSecure IP Services 1
Replies
5
Views
60
thedaver
thedaver

Part and Inventory Search

Sponsor

Back
Top