Hi Gurus, How do I shutdown the

[godhelp]

Hi Gurus,

How do I shutdown the following security loop holes, please any help. Which file belongs to all this entries.

deactivate rquotad
deactivate CDE-related daemon kcms_server in inetd.conf.
deactivate kerberos net daemon ktkt_warnd in inetd.conf.
deactivate kerberos net daemon gssd in inetd.conf.
deactivate llc2
deactivate uucp
deactivate slpd
deactivate flashprom
deactivate PRESERVE
deactivate bdconfig
deactivate wbem
deactivate afbinit
ifbinit deactivate.
deactivate ncalogd
deactivate ncad
deactivate mipagent.
deactivate sysid.net
deactivate sysid.sys
deactivate autoinstall
deactivate asppp
deactivate cachefs.daemon
deactivate cacheos.finish

 

[bigdaddy01]

Hi Ya,


Check out Sun blue prints for a tool called JASS.
Here is the web site;

http://www.sun.com/blueprints/browsesubject.html#security

There are scripts and documents to help you !

Cheers

Paul.

 

[630111]

At bootup, most of these services are set to start by default. Start in /etc, and do a search to find where each of the startup and kill scripts for these are found.

# find . -name *wbem* -print | more
./init.d/init.wbem
./rc0.d/K36wbem
./rc1.d/K36wbem
./rc2.d/S90wbem
./rcS.d/K36wbem

Simply rename each instance (for example, mv /etc/rc0.d/K36wbem /etc/rc0.d/_K36wbem).

deactivate rquotad
deactivate llc2
deactivate uucp
deactivate slpd
deactivate flashprom
deactivate PRESERVE
deactivate bdconfig
deactivate wbem
deactivate afbinit
ifbinit deactivate.
deactivate ncalogd
deactivate ncad
deactivate mipagent.
deactivate sysid.net
deactivate sysid.sys
deactivate autoinstall
deactivate asppp
deactivate cachefs.daemon
deactivate cacheos.finish

deactivate CDE-related daemon kcms_server in inetd.conf.
deactivate kerberos net daemon ktkt_warnd in inetd.conf.
deactivate kerberos net daemon gssd in inetd.conf.

As for the last three lines, I believe you are being told to open the inetd.conf file and comment out the relevant entry for each. Hope this helps!

630111

 

[julianbarnett]

Have a look at the Titan toolkit which does this sort of thing and much more to keep auditors happy and make your administration job harder!

http://www.fish.com/titan/