[lug] Firewall / Lockdown questions
Ben Whaley
bwhaley at gmail.com
Tue Jul 31 19:24:32 MDT 2007
You can find out exactly what is running on those ports by doing:
sudo /sbin/fuser 623/tcp
sudo /sbin/fuser 664/tcp
This will return the PIDs using this port> then you can do ps auxww |
grep <PID>.
Also, re: your observation above that sendmail.cf does not contain the
aforementioned line, you should look in sendmail.mc, NOT sendmail.cf.
I would strongly recommend never editing sendmail.cf directly (unless
you're Eric Allman).
On 7/31/07, dio2002 at indra.com <dio2002 at indra.com> wrote:
> Found another open port on my box from a remote box
>
> PORT STATE SERVICE
> 623/tcp filtered unknown
> 664/tcp filtered unknown
>
> # grep 623 /etc/services
> asf-rmcp 623/tcp # ASF Remote Management
> and Control Protocol
> asf-rmcp 623/udp # ASF Remote Management
> and Control Protocol
>
> I DO have an IPMI card in the box but it is not configured and doesn't
> even have a cable plugged into it. I see no services related to this in
> chkconfig. anybody have an idea about this? since i have NOT allocated
> an ip address to it in any config utility, i'm kind of curious why it's
> even showing up. i DO know that by default IPMI can only be set on the
> LAN port 1 though which is my active eth0?
>
> Not really expecting an answer but thought i'd ask.
>
>
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
>
More information about the LUG
mailing list