Koozali.org: home of the SME Server

Legacy Forums => Suggestions => Topic started by: uniQ on November 25, 2003, 03:30:39 AM

Title: Better port responsibility/configuration
Post by: uniQ on November 25, 2003, 03:30:39 AM

I'm somewhat paranoid about securiy, so I was a bit annoyed to discover all the listening ports on the Inet connection (LDAP, IMAP, POP3, MySQL, HTTPS, and other random ones like 980/981). Can you integrate a Listening Manager, or a way to control these ports?

Unless I'm missing something, I think this would be a good feature.

         -uniQ

Title: Re: Better port responsibility/configuration
Post by: Michael P. Soulier on November 26, 2003, 12:02:37 AM

uniQ wrote:
>
> I'm somewhat paranoid about securiy, so I was a bit annoyed
> to discover all the listening ports on the Inet connection
> (LDAP, IMAP, POP3, MySQL, HTTPS, and other random ones like
> 980/981). Can you integrate a Listening Manager, or a way to
> control these ports?

Are you trying to say that those are all open to the public internet? That is not so.

https, smtp and ident should be.

ldap and mysql are not.

imap and pop3 can be, if you configure them to be.

I suggest you look again.

Regards,
Mike

Title: Re: Better port responsibility/configuration
Post by: Brad on November 28, 2003, 06:47:27 AM

Michael,

You wrote
   >I suggest you look again.


Would you consider 'netstat -ae' or is there another command that would be better for determing open ports?

Title: Re: Better port responsibility/configuration
Post by: Del on December 04, 2003, 03:44:04 AM

Hi Brad,
You can download a free port scanner utility from:
http://www.famatech.com/radmin/utility/pscanner.php
It is a Windows program but works great.
Regards,
Del

Title: Re: Better port responsibility/configuration
Post by: brad on December 04, 2003, 04:31:52 AM

Check out this free online port scanner I found on http://www.google.ca/linux:

https://www.grc.com/x/ne.dll?bh0bkyd2

It is by Shields Up!.