Thanks guys, I appreciate the numerous replies (too numerous to list). All, except that one condesending one (we can all learn something; the reason human beings ask questions). Looks like I was almost there (I also appreciate the referances to additional security doc for later perusal). "I would really recommend you reading the Solaris Security Toolkit document, found at <http://www.sun.com/blueprints/> when you get the chance.". Really nice to hear someone encouraging me on how to learn than to "put me in my place". Yes, inetd.conf is where to comment simple services like finger. Daemon based services like SMTP need to have their startup files taken out of commission too). finger & smtp were commented in inetd.conf, sendmail was killed and the rc3 file was renamed; that seem to have done it for those two. Wasn't able to find a snmp startup file or daemon. # find / -mount -name "*snmp*" /usr/include/inet/snmpcom.h # ps -aef|grep snmp root 1361 1171 1 07:50:42 pts/6 0:00 grep snmp # Looks like it may not be running after all (maybe that's IT's party line that snmp needs to be disabled too). I got a list of packages to remove, so I'll do that for good measure (pkgrm SUNWsacom SUNWsadmi SUNWsadmx SUNWmipu SUNWmipr SUNWsasnm SUNWmibii SUNWsasnx) Thanks again guys and gals. Not sure I'm out of the woods yet but at least I know there's a team of search and rescue folks like you all ... Michael H. Auria 800-232-2123 / option 3 Senior Technical Support Engineer fax: 408-965-2974 Philips Radiology Oncology Systems (formerly RTP) email: pros.support@philips.com Have you registered at the Customer Connection yet? http://apps1.medical.philips.com Countless, unseen details are often the only difference between mediocre and magnificent ... To: sunmanagers@sunmanagers.org cc: (bcc: Michael Auria/MLS/MS/PHILIPS) Subject: no time for RTFM michael.auria+FromInterNet@philips Classification: .com Sent by: sunmanagers-bounces@sunmanagers.or g 05/09/03 07:26 AM Sorry for the simple questions but corp IT has said they need some services turned off ASAP, "mostly SMTP, Finger and snmp ". They mentioned turning them off in inetd.conf but if it's a scanning tool determining this then I figure commenting the entries in the /etc/services file is sufficient. Is that right ? Also, I could find no entry in either file for snmp. How does that get turned off ? # grep -i smtp services inetd.conf services:smtp 25/tcp mail # grep -i snmp services inetd.conf # grep -i finger services inetd.conf services:finger 79/tcp inetd.conf:# Finger, systat and netstat give out user information which may be inetd.conf:finger stream tcp nowait nobody /usr/sbin/in.fingerd in.fingerd Looks like commenting /etc/services worked for finger. # finger user@hostname [hostname.domain] connect: Connection refused But not for smtp. # grep mail services # smtp 25/tcp mail # telnet hostname 25 Trying xxx.xxx.xxx.xxx ... Connected to hostname.domain. Escape character is '^]'. 220 hostname.hostname.nis Sendmail SMI-8.6/SMI-SVR4 ready at Fri, 9 May 2003 06:43:4 4 -0700 How do I get smtp service turned off (I've killed sendmail process for now but am looking for correct method of turning this service off; commenting it's startup in rc3.d) ? Also, how do I turn of snmp (network management service I think). Help me please ... Michael H. Auria 800-232-2123 / option 3 Senior Technical Support Engineer fax: 408-965-2974 Philips Radiology Oncology Systems (formerly RTP) email: pros.support@philips.com Have you registered at the Customer Connection yet? http://apps1.medical.philips.com Countless, unseen details are often the only difference between mediocre and magnificent ... _______________________________________________ sunmanagers mailing list sunmanagers@sunmanagers.org http://www.sunmanagers.org/mailman/listinfo/sunmanagers _______________________________________________ sunmanagers mailing list sunmanagers@sunmanagers.org http://www.sunmanagers.org/mailman/listinfo/sunmanagersReceived on Fri May 9 12:00:51 2003
This archive was generated by hypermail 2.1.8 : Thu Mar 03 2016 - 06:43:10 EST