On a public server the basic firewall rule should be to close all TCP, UDP,
and ICMP ports. Then open the ones you need, preferably with a specific
system or user as a qualifier.
Just because you know what a port is for, doesn't mean it should be open.
Example, if there isn't an email server running on that server, then the
email ports should not be open.
-----Original Message-----
From: Rick Dwyer Sent: Monday, October 19, 2009 12:13 PM
Hello List.
I am trying to connect to a remote FM server machine via a client, but
after a port scan, it appears they do not have 5003 open. I have
asked them to do so.
However, they do have a lot of other ports open... I'm hoping some can
tell me if there are any glaring security issues here that I can pass
along to them.
The open ports are as follows:
Open TCP Port: 1 tcpmux
Open TCP Port: 21 ftp
Open TCP Port: 53 domain
Open TCP Port: 80 http
Open TCP Port: 110 pop3
Open TCP Port: 111 sunrpc
Open TCP Port: 143 imap
Open TCP Port: 443 https
Open TCP Port: 465 urd
Open TCP Port: 993 imaps
Open TCP Port: 995 pop3s
Open TCP Port: 2077 trellisagt
Open TCP Port: 2078 trellissvr
Open TCP Port: 2082 infowave
Open TCP Port: 2083 radsec
Open TCP Port: 2084 sunclustergeo
Open TCP Port: 2086 gnunet
Open TCP Port: 2087 eli
Open TCP Port: 2095 nbx-ser
Open TCP Port: 2096 nbx-dir
Open TCP Port: 3306 mysql
Open TCP Port: 4643
21, 80, 110, 443 & 3306 I understand.
993 & 995 appear to be for additional mail protocols... but all the
others?
Any help is appreciated.
--Rick
_______________________________________________
FMPexperts mailing list
[hidden email]
http://lists.ironclad.net.au/listinfo.cgi/fmpexperts-ironclad.net.au_______________________________________________
FMPexperts mailing list
[hidden email]
http://lists.ironclad.net.au/listinfo.cgi/fmpexperts-ironclad.net.au
