Topic: closing port 113

[norm]

I know this topic has been beat to death, but in the archives I have not been able to find that anyone actually answered the question.

The question is how do I block port 113.  Yes, I know it will break things; yes, I hear that grc sucks; i know that it's no big deal to leave it open, etc.  People have posted 50 or so posts on this but I could not find that anyone actually answered the question.

Now that I know the risks, what is the best way to close port 113?

Thank you.

Norms

[Kelvin]

Hi Norm,

This WAS answered quite a while back.

Search the forums for the word 'masq' and remember to search all dates.

Kelvin

[norm]

Yes, I remember seeing a message from you in my search prior to posting.  Do you have any search criteria that would serve to reduce the number of hits that "masq" returns?  

Searching for masq by itself (in body and subject?), as you suggest, resturns several hundred searches with date range unlimited.

[Kelvin]

Hi Norm,

Searching for "masq closing ports" on all dates brings up (amongst a few others):-

http://forums.contribs.org/index.php?topic=2546.msg8601#msg8601

The original method I used in the above post is not "e-smith friendly" as it modifies the original template used by the server. The E-Smith friendly way would be to copy the necessary files and directory chain under the /etc/e-smith/templates folder to /etc/e-smith/templates-custom and modify those instead.

Kelvin

[Ray Mitchell]

Norm
You can also search by Author if you know someone has posted a particular reply you are after and isolate the information that way
Regards
Ray Mitchell

[norm]

Ahhh.  I do remember seeing this post.  I studied it briefly but then stopped because I was not sure if it applied.  First, one poster implies that, if one has configured the esmith to be "private server and gateway", that port 113 would be closed.  I have configured mine this way and still 113 is open. ?

Second, I read your specific message Kelvin and I viewed the ./masq directory.  However since I did not see a particlur 45Allow.... for identd, I was not sure what to do with it.  

My networking knowledge is not strong enough to know which ./masq files to alter.  Does anyone know which ones should be altered to close 113?

Norms

[Kelvin]

Norm,

SME calls it AUTH (ie. look for 45AllowAUTH).

Kelvin

[Jan-Willem]

Norm,

Type vi /home/e-smith/configuration
Search for auth=
Change enabled to disabled
Type /sbin/e-smith/signal-event console-save

Thats it, port 113 is closed.

Greetings, JW

[Rob Wellesley]

Jan-Willem wrote:
>
> Thats it, port 113 is closed.
>

Actually auth (identd?) is now disabled. In private mode it should be enabled but private.

Check you /home/e-smith/configuration file - the auth=service line should have -

  access | private


Also SystemMode=  should be privateserver... or words to that effect

If not then something is wrong with your private server and gateway setup

If these are correct and you still have 113 open then...


rob