Red Hat NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE Guida di Installazione Pagina 48
- Pagina / 82
- Indice
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
One more point on ports: ports are only accessible if there is something listening on that port. No one can
force a port open if there is no service or daemon listening there, ready to handle incoming connection
requests. A closed port is a totally safe port.
And a final point on the distinction between clients and servers. The example above did not have a telnet or
ftp server in the LISTENER section in the netstat example above. In other words, no such servers were
running locally. You do not need to run a telnet or ftp server daemon in order to connect to somebody
else's telnet or ftp server. These are only for providing these services to others that would be making
connections to you. Which you don't really want to be doing in most cases. This in no way effects the ability
to use telnet and ftp client software.
8.2. Common Ports
A quick run down of some commonly seen and used ports, with the commonly associated service name, and
risk factor. All have some risk. It is just that some have historically had more exploits than others. That is
how they are evaluated below, and not necessarily to be interpreted as whether any given service is safe or
not.
1−19, assorted protocols, many of which are antiquated, and probably none of which are needed on a modern
system. If you don't know what any of these are, then you definitely don't need them. The echo service (port
7) should not be confused with the common ping program. Leave all these off.
20 − FTP−DATA. "Active" FTP connections use two ports: 21 is the control port, and 20 is where the data
comes through. Passive FTP does not use port 20 at all. Low risk, but see below.
21 − FTP server port, aka File Transfer Protocol. A well entrenched protocol for transferring files between
systems. Very high risk, and maybe the number one crack target.
22 − SSH (Secure Shell), or sometimes PCAnywhere. Low to moderate risk (yes there are exploits even
against so called "secure" services).
23 − Telnet server. For LAN use only. Use ssh instead in non−secure environments. Moderate risk.
25 − SMTP, Simple Mail Transfer Protocol, or mail server port, used for sending outgoing mail, and
transferring mail from one place to another. Moderate risk. This has had a bad history of exploits, but has
improved lately.
37 − Time service. This is the built−in inetd time service. Low risk. For LAN use only.
53 − DNS, or Domain Name Server port. Name servers listen on this port, and answer queries for resolving
host names to IP addresses. High Risk.
67 (UDP) − BOOTP, or DHCP, server port. Low risk. If using DHCP on your LAN, this does not need to be
exposed to the Internet.
68 (UDP) − BOOTP, or DHCP, client port. Low risk.
Security Quick−Start HOWTO for Red Hat Linux
8.2. Common Ports 45
- Hal Burgiss 1
- Table of Contents 2
- 1. Introduction 4
- 1.2. Notes 5
- 1.3. Copyright 5
- 1.4. Credits 6
- 1.5. Disclaimer 6
- 1.7. Feedback 7
- 2. Foreword 8
- 2.2. Before We Start 9
- 3.1. System Audit 10
- 3.3. Stopping Services 12
- 3.3.1. Stopping Init Services 13
- 3.3.2. Inetd 14
- 3.3.2. Inetd 12 15
- 3.3.3. Xinetd 16
- 3.3.4. When All Else Fails 17
- 3.4. Exceptions 18
- 4. Step 2: Updating 20
- 4. Step 2: Updating 18 21
- 5.1. Strategy 22
- 5.2.1. ipchains 23
- 5.2.1. ipchains 21 24
- 5.2.2. iptables 26
- 5.2.2. iptables 24 27
- 5.3. Tcpwrappers (libwrap) 29
- 5.3.1. xinetd 31
- 5.4. PortSentry 32
- 5.5. Proxies 32
- 5.6. Individual Applications 33
- 5.7. Verifying 35
- 5.8. Logging 36
- 5.9. Where to Start 37
- 6. Intrusion Detection 39
- # chattr +i /bin/ps 40
- −−−i−−−−−−−−−− /bin/ps 40
- # chattr −i /bin/ps 40
- 7. General Tips 43
- # must exist 44
- root: hal@bigcat 44
- 8. Appendix 46
- 8.2. Common Ports 48
- 8.3. Netstat Tutorial 51
- 8.4. Attacks and Threats 59
- 8.4.2. Rootkits 60
- 8.4.3. Worms and Zombies 60
- 8.4.4. Script Kiddies 61
- 8.4.5. Spoofed IPs 61
- 8.4.6. Targeted Attacks 61
- 8.4.8. Brute Force 62
- 8.5. Links 63
- 8.6. Editing Text Files 65
- 8.7. nmap 68
- 8.8. Sysctl Options 71
- 8.8. Sysctl Options 69 72
- 8.9. Secure Alternatives 73
- 8.9. Secure Alternatives 71 74
- 8.9. Secure Alternatives 72 75
- 8.9. Secure Alternatives 73 76
- 8.10.2. iptables II 77
- 8.10.2. iptables II 75 78
- 8.10.2. iptables II 76 79
- 8.10.2. iptables II 77 80
- 8.10.3. Summary 81
- 8.10.4. iptables mini−me 82
© 2020, manymanuals.it. Tutti i diritti riservati | 0.048 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale