Koozali.org: home of the SME Server
Legacy Forums => General Discussion (Legacy) => Topic started by: Tom Tinkerton on May 09, 2002, 11:54:50 AM
-
GRC.com says my port 113 *is* open but should NEVER be open. I just installed
sme in gateway and servermode. Why does mitel feel that port 113 should sometimes be open? Can I close it?
Thank you,
TT
-
Found this answer using google search, maybe it helps:
----------------------------------------Begin quote-------------------------------------------
Port 113 is often left visible by firewalls such as Black Ice Defender, Norton, Defender), since 113 is the IDENT port.
IDENT is used when you connect to mail servers, or to IRC servers, to find out "who" is using the service. With IDENT filtered, your ISP mail server (unlikely) or IRC server (likely) may refuse your request or take a long time to respond as it waits for a closed/open response.
It is possible to remove IDENTD as showing up as a port, by reconfiguring your firewall to over-ride the default rules. As above, if IDENTD is filtered in this way, IRC and mail servers may not work properly.
You can also decide that IDENTD is safe, since just having it visible does not mean there is anything that can be exploited on your side, and live with the less than "perfect" results.
----------------------------------------End quote----------------------------------------------
source: http://www.dslreports.com/faq/225
regards,
Jan
-
Well thank you for that. I would just like to know what other, security paranonid people do about this? Do the other security minded people on this list leave it open?
TT
-
I don't know how "security minded" I am, but I do leave it open...