Well I'm kinda a paranoid person, and got bored and ran a port scan from 0 to 500000 and turned up some interesting results, I was wondering how I find the programs tied to each open port. Its my computer and I'd like to very well know what programs are needing these ports and for what usage.
View 7 Replies
my ufw rules have been loaded and active yet using iptraf i see tcp connections on ports that were never allowed by ufw. can anyone explain this too me does ufw just not work?
View 6 Replies View Related-Which to choose? Desktop or Netbook. I have a HP G61 Laptop.
Specs:
Manufacturer: Hewlett-Packard
Model: HP G61 Notebook PC
Processor: AMD Sempron M120 2.1 GHZ
Ram: 3.00 GB
System Type: 64-Bit
-Is there any programs that will allow me to open VC++ projects on Linux C++ compilers? All my work has been on Microsoft VC++ and I don't wanna start over(main reason I haven't switched).
-Perks of using Linux? Cons?
I'm locking down my laptop. I know I can use a firewall to ensure nothing gets through that I didn't catch, and I certainly plan on using one, but in the meantime, I want to know what exactly is running on my system.
nmap localhost returns:
Code:
james@james-linux:~$ nmap localhost
Starting Nmap 5.00 ( http://nmap.org ) at 2010-07-26 23:33 CDT
Warning: Hostname localhost resolves to 2 IPs. Using 127.0.0.1.
Interesting ports on localhost (127.0.0.1):
Not shown: 994 closed ports
PORT STATE SERVICE
25/tcp open smtp
111/tcp open rpcbind
139/tcp open netbios-ssn
445/tcp open microsoft-ds
631/tcp open ipp
2049/tcp open nfs
Nmap done: 1 IP address (1 host up) scanned in 0.18 seconds
However, I know that localhost goes back to the loopback interface, 127.0.0.1. So, to see what was really open, I ran nmap 192.168.0.108, which is my laptop's IP at the moment.
Code:
james@james-linux:~$ nmap 192.168.0.108
Starting Nmap 5.00 ( http://nmap.org ) at 2010-07-26 23:33 CDT
Interesting ports on 192.168.0.108:
Not shown: 996 closed ports
PORT STATE SERVICE
111/tcp open rpcbind
139/tcp open netbios-ssn
445/tcp open microsoft-ds
2049/tcp open nfs
Nmap done: 1 IP address (1 host up) scanned in 0.14 seconds
Now if I understand correctly, I can attribute 139 and 445 to my Samba share. That I'm okay with. What I don't know is 111 and 2049. Does anyone know what these ports are, what's running on them, and how I could turn them off, supposing that they are a security risk?
I'm getting heat from the head networking office that ports 21, 110, and 143 are open. I can telnet to those ports from a remote machine (not localhost) and get a prompt. There does not seem to be anything listening on those ports according to netstat. I've tried using iptables to discard all traffic to a from those ports but I can still telnet to them. This is a lucid desktop machine.
View 4 Replies View RelatedI installed Ubuntu 9.10 recently. I heard that there will be no open ports in the system unless I specifically open one. How do I scan to find a open port in my system.
View 9 Replies View Relatedwhen i enable my ufw it completely shuts me out and closed my internet connection. i installed firewall configuraiton interface and through it defined rules to accept incoming internet connections on port 80, i can see the rules are there but when i enable my firewall it just shuts me out completely again.
when i do(with my firewall enabled):
Code:
$ sudo ufw status
it gives me:
Quote:
Status: active
[Code].....
I also messed around with fwbuilder and iptables but since then deleted fwbuilder(besides i just compiled firewall policy and never actually installed it because of errors while trying to install it. Iptables I cleared with:
Code:
$ sudo iptables -F
I am trying to configure Bittorando and iptables using Firestarter. I have got it working but am concerned about security holes.
Let me explain.
AIUI, the Bittornado program contacts the "tracker" on various ports which (from the previously blocked connections in Firestarter) ranged from 4664 to 65532. Therefore, currently I have set this range to be open to allow downloads of the torrent.
However, this seems, IMHO, to devalue to point of having a restrictive exit policy for Firestarter since now virtually all ports are open. I can see nothing on the Bittornado client to restrict the outgoing ports although the "listening" (incoming) ports can be restricted.
I would prefer to have my system locked-down so that the minimal number of ports are open to initiate external connections so is there any way to achieve this with Bittornado?
I am trying to understand why when running nmap against a SonicWALL firewall at a remote location, the SonicWall firewall is saying that most of its 65535 ports are open? I know this cant be correct and remember reading about how some of these network appliances are setup this way to thwart off attacks.
View 7 Replies View RelatedA portscan reveals that port 39878 is 'open', service: 'unknown. I deny service for this port in Firestarter FW 'policy' Firestarter does not show any active connection. I am not running any apps, so how can I close this port?
View 9 Replies View RelatedI now have a firewall up and running: almost perfectly. When I use nmap and perform the most comprehensive scan I can think of, it cannot detect any wide open ports (unless bittorent is running) and cannot fingerprint the OS. My last 2 questions about my firewall (I am very happy now) are:
It seems as though Firestarter has been "abandoned" by the developers, and that gufw is more current. Does it really matter which firewall I use because don't they all do the same thing? I like firestarters system tray icon a lot. 2nd question is I have two open|filtered ports. Are these still pretty well protected?
It is very pleasing to see that I have no open ports, because if you were an experienced Windows user like I was, you got used to the fact you were going to have open ports no matter what. Linux's builtin firewall completely destroys the expensive and useless scams they call Norton and McAfee. Linux officially rocks now
Within the documentation of example OpenVPN setups there is a setup that shows an OpenVPN Server with two network interfaces. One interfaces is plugged into the public internet network and the second interface is plugged into the private network.
Normally I assume that it would be best to place the OpenVPN system inside the network behind the router and firewall and open only the ports needed on the router to allow access to the OpenVPN system. All other router ports would be closed. This is the first example they show. To see what I am talking about see page(s) 6-7 here -> [URL]
If one were to use the two interface public facing setup, when would that setup best be justified? I guess if you didn't want to open any ports on the router/firewall then this could be justified but then you have to lock down this public system individually instead of having it protected by the network firewall.
I'm having a problem that I've not seen before, in that I ma constantly getting corrupted Ext 4 filesystems on my / and /home partitions. I am having to boot using a cd rom and run fsck -y on at least one of these partitions almost daily (mainly / partition)Looking at the system log, I'm seeing stuff like this:
04/08/11 04:28:37 PMValkyriekernel[ 28.090570] hda-intel: IRQ timing workaround is activated for card #1. Suggest a bigger bdl_pos_adj.
04/08/11 04:36:54 PMValkyriekernel[ 524.098006] ata1.01: exception Emask 0x0 SAct 0x0 SErr
[code]....
I recently bought an IdeaPad Z570 laptop with Sandy Bridge Intel Core i5 processor, 3 GB RAM etc.I still have things that I am forced to go to Windows for, so I had to make it a dual boot system. And I went and installed Windows 7 because that's what Lenovo provides the drivers for.
But to my dismay, lots of stuff, especially my Keyman keyboards, didn't work on Windows 7. So I installed Windows XP!But there are no drivers for this latest hardware for Windows XP. So what did I do?Installed VirtualBox on Kubuntu and installed Windows XP as a guest system using it! Linux/Kubuntu takes care of the hardware (or something like that).Installing VirtualBox Guest Addons from Multiverse also enables me to share directories between the Linux host and Windows guest, so I can access the files on my Windows D drive by mounting it in Linux (which I do by default in /etc/fstab anyway) and sharing it via VirtualBox Shared Folders.Given that Intel Virtualization Acceleration technology is inbuilt into the new processor/chipset, I don't feel much difference in speed!
Basically as the thread tittle suggests, I've got Xubuntu 11.04 installed as I didn't take to Unity. However one thing I really did like was the global menu. Back in 10.10, I installed GlobalMenu from a webupd8 ppa, Worked like a charm. However under xubuntu 11.04, that ppa doesn't seem to work, and I don't like the look of compiling from source, as all the instructions call for installing xfce4 panel, which obviously I already have, and I have no idea what else I have of those lib's. All this is intended to run in xfapplet, so hopefully I'm not being silly and trying to run something somewhere where it won't run.
View 4 Replies View RelatedI have ubuntu installed on my laptop which works fine. It has a pcmcia wifi card. When I tried to run the kubuntu live cd it couldn't find the card. As the drivers will be the same how do I find the drivers to allow me to use kubuntu? I plan to make a live usb which I'll add the drivers to so that it'll work each time I plug in. Alternatively if I can find the drivers then I'll just enable them each time via the cd.
View 5 Replies View Relatedcan open the programs pe-install, but can't open other programs or install new programs
View 4 Replies View Relatedway to run .exe programs (with a bunch of resources) in Ubuntu 11.04 (natty).
View 3 Replies View RelatedThis should be relatively simple, I've tried searching google for it already posted, but couldn't find the list. Would anyone possibly know what the default autostart settings are for kubuntu? Like, if you haven't changed much in your autostart, could you open that up real quick and take a screenshot and post it?. I was trying to remove one of the things I had in autostart but my laptops touchpad got stuck and held down the "remove" and removed 3 of the default applications.
View 3 Replies View RelatedI have a problem, because installation of ubuntu 11.04 will fail if I try to.
I have also Kubuntu and Xubuntu installed, which I regret a lot because I cannot uninstall them as well...
The problem is that I have installed a one-time-activation proprietary software so a fresh install is no option.
The error when upgrading is, that "xubuntu-desktop" cannot be marked for upgrade!
I'm having sporadic issues with the openoffice.org program. Sometimes, power point presentations will crash the program and then I can't open any open office programs without rebooting the computer. The problem seems to be just with powerpoint files and I'm not sure what the issue could be.
View 7 Replies View Relatedwanted to try kubuntu without all the additional programs how to install it?
View 1 Replies View RelatedI would like to know how to find out the name of programs so that I could launch them in Terminal. For example, to launch gimp, I just type
Code:gimp and it launches. Well how do I find out other names to other programs?
A few months ago I installed Ubuntu 9.10 on my girlfriends laptop, on her request, as she didn't like Windows any more. Since then the internet connection periodically slows down due to too many open ports/connections. Always when this happens I call our ISP and usually there are around 80-200(!) active connections to various IP's.
She is not downloading torrents or anything.
She only uses Firefox and a few open tabs as people do.
Skype is open.
Wireless internet connection.
I am thinking either Ubuntu is updating more or less constantly or the ports/connections aren't closed "after use".
I'm trying to open my ports all the way, but for some reason, I am unable to do so. I've forwarded the ports I want open in my router (I switched between two routers to make sure), I made exceptions in Firestarter, and I even added UFW rules, but when I use pretty much any and every port checking tool out there, the ports eithere back stealthed or closed.I'm not a complete noob, and I'm not an expert, but I'm p sure I'm doing everything right, seeing as there isn't much to screw up.The reason I'm trying to fully open these ports is because I'm getting this dumb 'No Incoming Connections
View 3 Replies View RelatedI'm using ubuntu-linux ( ubuntu 9.10)I use utility autoscan network to scan the systems available in local area network of my hostel.It shows my open TCP ports : like Ssh , Smtp , Http , NetBios-ssn , Microsoft-ds , ipp , Mysql , Postgres.Are all these services need to run all the time or I can manage the ports.Don't know much about it just want to know these ports are by default open or I can manage them.
View 7 Replies View RelatedDoes Ubuntu come with a firewall preinstalled and running? I need to open port 9997 - how would I got about doing this?
View 2 Replies View Related"Ubuntu Server has no open ports by default" - [URL]. Does this mean right after a 10.04 Server Edition installation, if a user wants to start a web service e.g. a Java process to listen on say port 8080, he would have to configure the firewall first?
View 1 Replies View RelatedI have been running Ubuntu 10.10 and have found that at any time I am connected to the Internet that I will randomly see high port numbers open when doing a port scan on my computer all are in the unknown listings with five digit numbers so I don't know what is going on or who is using them. Please check your system to see if you are having the same thing happen by using network tools and filling in your local ip address in the port scan tab. If you shut down your Ethernet interface and run port scans the high ports are no longer open. this will at least keep whoever is using your ports at bay when you are not using the net.
View 4 Replies View RelatedJust did a check on "shields up" and it says that ten of my ports are open. I get the same result with or without both shorewall and firestarter. I suspect it may have something to do with the mysql server packages added automatically during installation. Am I right. If so, what can be done about it? If not, has anyone any idea how to keep my ports closed?
View 5 Replies View Related
