Solaris 10 Default Security
unix solaris
When are we going to start making Operating Systems install secure by default?
$ netstat -a|grep -i listen|awk '{print $1}'
*.sunrpc
*.32771
*.lockd
*.32772
*.32773
*.32774
*.32775
*.32776
*.telnet
*.ftp
*.finger
*.login
*.shell
*.fs
*.32777
*.ssh
*.5987
*.898
*.32778
*.5988
*.32779
*.9010
*.32780
*.32782
*.32781
*.smtp
*.smtp
*.submission
*.telnet
*.ftp
*.finger
*.login
*.shell
*.fs
*.ssh
*.smtp
Comments
Samat Jain
I think that's a little contrived; it makes no distinction between services only available to localhost and those available to a network. Just because a program uses some sort of socket for <acronym title="inter-process communication">IPC</acronym> does not inherently make it insecure.
mmichie
Nope, if it was only listening for IPC type stuff it would be bound to localhost instead of *. I'd nmap it for you, but I already locked it down :) Try it.