Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: stephan on March 01, 2001, 01:32:45 AM

Title: security issues
Post by: stephan on March 01, 2001, 01:32:45 AM

When I goto www.grc.com it shows that the ports 21, 25, 80 and 113 are wide open. I don't use the ftp or host a website (actually not allowed by my isp). Does this create a security risk?  Is there any way to close them?

thanks in advance,

Stephan
the Netherlands

Title: Enabled services (was Re: security issues)
Post by: Gordon Rowell on March 01, 2001, 01:38:14 AM

stephan wrote:

If you believe there are security issues, please report them to
security@e-smith.com Public forums are not an appropriate place to raise
security concerns in the first instance. As it happens, none of the issues you
raise are security concerns.

> When I goto www.grc.com it shows that the ports 21, 25, 80
> and 113 are wide open.

As you would expect from a server which supports FTP, mail and HTTP.
Port 113 is for ident, which is required to talk with some mail servers (it
shouldn't be, but some require it).

> I don't use the ftp or host a website
> (actually not allowed by my isp). Does this create a security
> risk?  

e-smith chooses the most appropriate tools and limits access as much
as is possible.

> Is there any way to close them?

http://www.e-smith.org/docs/manual

will tell you how to turn off FTP. Turning off the other services can be done through
the configuration database if this is desired.

We provide unlimited technical support to our registered customers, and would
be happy to help registered customers with this.

Gordon

Title: Re: Enabled services (was Re: security issues)
Post by: stephan on March 01, 2001, 12:30:17 PM

Ok.....thank you very much for your time.

stephan