StartUp Scripts
Michael Butash
michael at butash.net
Fri Oct 10 18:22:56 MST 2014
CUPS is technically ok, it binds to 127.0.0.1 only by default, only
reachable via localhost/loopback.
I'm more annoyed by things like skype and banshee that insist on opening
wide-open listening sockets on all interfaces.
Skype is microsoft, one really can't trust anything they do since the
first thing after acquisition was remove security features and removing
decentralization (probably capitulation to .gov to allow blackbox
sniffing to allow the acquisition), but sadly is almost a necessary evil
to deal with the outside world now or I'd simply refuse as I had for
years. I just assume the open socket is to allow the nsa to direct
connect and listen (assuming nat/firewalls don't restrict this).
Banshee, not really sure why it's opening a socket. I don't usually
expect music player authors to understand well network security aspects,
one can only hope they understand at least enough to mitigate remote
code exploits via it.
What's listening openly on your system?
sudo netstat -anp | egrep 'tcp|udp' | grep LIST
Anything NOT bound only to 127.0.0.1 is exposed when not hiding behind a
firewall or host.allow.
-mb
On 10/10/2014 05:20 PM, Stephen M wrote:
> Hi Everybody,
> This is a problem that keeps bothering me. I have a HP Laptop that I
> installed Mint 17 a few months ago. When I turn on my laptop, I scan
> it for open ports and find stuff like cups, smbd, avahi-daemon..
>
> I have disabled them with service and removed them from start up with
> update-rc.d -f <name> remove. But when I restart my computer, they
> are back. I have a desktop with Ubuntu 12.04 that I did this with and
> it was fine. I doubt that Mint 17 which is suppose to be like Ubuntu
> 14.04, should be having this trouble.
>
> Does anyone have a thought?
>
> --
> Stephen Melheim
> 602-400-7707
> SMelheim85 at gmail.com <mailto:SMelheim85 at gmail.com>
>
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.phxlinux.org
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.phxlinux.org/mailman/listinfo/plug-discuss
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.phxlinux.org/pipermail/plug-discuss/attachments/20141010/414cedd3/attachment.html>
More information about the PLUG-discuss
mailing list