General discussion

Locked

Hiding Ports

By tonycaban ·
Is there a way to hide or cloak ports, such as port 69,111 etc These ports show up on a scan even though they are stopped.

This conversation is currently closed to new comments.

3 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by joematus In reply to Hiding Ports

You didn't mention the OS or if the ports are udp or tcp. If it's a windows system just run zonealarm. Since you mention port 111, it most likely is Unix of some kind. If it's RedHat, run the command "netstat -an" to see if those ports are really open. If you have the lsof command, run "lsof -i" to see what is using those ports. If they're open, close them. If you can't close them, use ipchains or iptables to block access to them.

Collapse -

by peeyush_maurya In reply to Hiding Ports

there r many free firewall avaiable which can accept/reject/deny ur selcted ports.

again it depend on ur OS

Collapse -

by linuxrich2000 In reply to Hiding Ports

Hey,

Go into your
/etc/services
file.

Put a #
at the start of the port you like to close.

Then restart the network services

dummy@hostname:/etc$ cat /etc/services | more
# /etc/services:
# $Id: services,v 1.4 1997/05/20 19:41:21 Exp $
#
# Network services, Internet style
#
# Note that it is presently the policy of IANA to assign a single well-known
# port number for both TCP and UDP; hence, most entries here have two entries
# even if the protocol doesn't support UDP operations.
# Updated from RFC 1700, ``Assigned Numbers'' (October 1994). Not all ports
# are included, only the more common ones.

tcpmux 1/tcp # TCP port service multiplexer
echo 7/tcp
echo 7/udp
discard 9/tcp sink null
discard 9/udp sink null
systat 11/tcp users
daytime 13/tcp
daytime 13/udp
netstat 15/tcp
qotd 17/tcp quote
msp 18/tcp # message send protocol
msp 18/udp # message send protocol
chargen 19/tcp ttytst source
chargen 19/udp ttytst source
ftp-data 20/tcp
ftp 21/tcp
fsp 21/udp fspd
ssh 22/tcp # SSH Remote Login Protocol
ssh 22/udp # SSH Remote Login Protocol
telnet 23/tcp

The last item is "telnet"

#telnet 23/tcp

Do the same for the prots you like to close
#69
#111

Save file.
Restart services.

Hope this helps.

Back to Linux Forum
3 total posts (Page 1 of 1)  

Related Discussions

Related Forums