[Kolab-devel] Open ports?
Markus Heller
markus at relix.de
Mon Aug 15 14:17:04 CEST 2005
Dear experts,
I'm interested to hear your opinion about which open ports should better be
hidden behind an iptables entry...
I see that the following ports are open:
mykolab:~# netstat -tulpen
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
User Inode PID/Program name
tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN
0 543953 16120/cyrmaster
tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN
0 543956 16120/cyrmaster
tcp 0 0 0.0.0.0:389 0.0.0.0:* LISTEN
0 385452 2132/slapd
tcp 0 0 127.0.0.1:10024 0.0.0.0:* LISTEN
19415 385856 2658/amavisd (maste
tcp 0 0 127.0.0.1:10025 0.0.0.0:* LISTEN
0 386455 3262/master
tcp 0 0 127.0.0.1:10026 0.0.0.0:* LISTEN
0 386458 3262/master
tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN
0 543950 16120/cyrmaster
tcp 0 0 127.0.0.1:9999 0.0.0.0:* LISTEN
0 386571 3393/perl
tcp 0 0 127.0.0.1:783 0.0.0.0:* LISTEN
0 385756 2553/spamassassin.p
tcp 0 0 0.0.0.0:2000 0.0.0.0:* LISTEN
0 543959 16120/cyrmaster
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN
0 491528 24939/apache2
tcp 0 0 0.0.0.0:465 0.0.0.0:* LISTEN
0 386444 3262/master
tcp 0 0 127.0.0.1:2003 0.0.0.0:* LISTEN
0 543964 16120/cyrmaster
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
0 1219 1176/sshd
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN
0 386391 3262/master
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN
0 392110 7230/apache
tcp 0 0 0.0.0.0:636 0.0.0.0:* LISTEN
0 385454 2132/slapd
well, I banned kolab-apache from using port 80 and told apache2 to live there.
and nmap says
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
80/tcp open http
143/tcp open imap
389/tcp open ldap
443/tcp open https
445/tcp filtered microsoft-ds
465/tcp open smtps
636/tcp open ldapssl
993/tcp open imaps
995/tcp open pop3s
2000/tcp open callbook
6667/tcp filtered irc
Thanks for your advice!
Markus
More information about the devel
mailing list