Infrastructure Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Hardening Solaris 10

807557Sep 22 2006 — edited Nov 28 2006

Hello,

I am in the process of locking down a new Solaris 10 box. I have run JASS (using some pretty generic scripts) but running nmap over the box shows the following ports are open:

22/tcp open ssh
111/tcp open rpcbind
4045/tcp open lockd
32771/tcp open sometimes-rpc5
32774/tcp open sometimes-rpc11
32775/tcp open sometimes-rpc13
32776/tcp open sometimes-rpc15
32777/tcp open sometimes-rpc17

If I disable svc:/network/rpc/bind:default then I can close all these ports (apart from SSH - which I want open) but then svc:/milestone/multi-user-server:default remains offline and my legacy /etc/rc3.d scripts don't run and machine doesn't seem to run properly.

Anyone got any advice on shutting down these ports while allowing the machine to reach the multi-user-server milestone?

Many thanks in advance.

Locked Post

New comments cannot be posted to this locked post.

Locked on Dec 26 2006

Added on Sep 22 2006

#oracle-solaris, #solaris-10

4 comments

259 views