View Single Post
  #3   (View Single Post)  
Old 10th June 2008
BSDfan666 BSDfan666 is offline
Real Name: N/A, this is the interweb.
Banned
 
Join Date: Apr 2008
Location: Ontario, Canada
Posts: 2,223
Default

You can also stop Xorg from listing on TCP port 6000, assuming you using ksh as your shell.. add the following into your .kshrc or .profile
Code:
alias startx='/usr/X11R6/bin/startx -- -nolisten tcp'
export startx
This will prevent utilization of "xhost" and friends, but you can still do X forwarding over SSH though.

Line 31-34 in /etc/inetd.conf have the daytime/time services, ports 13 and 37 tcp, they may or may not be required.

In all honesty, you do not need to disable any of these services.. sendmail listens on localhost so it wasn't a security threat, a lot of system daemons use it for logging.

Consider configuring pf(4) instead of blindly disabling services you don't understand..

Take care.

Last edited by BSDfan666; 10th June 2008 at 11:43 AM.
Reply With Quote