From: Lydiard (no email)
Date: Wed Oct 01 2003 - 08:25:17 EDT
> -----Original Message-----
> From: Wietse Venema [mailto:]
<SNIP>
> > Since then the only thing I have done is copy the /etc/localtime and
> > /lib/libnss_wins.so and winbind.so to a location in
> /var/spool/postfix
> > as I was getting errors when running postfix check. This
> was following
> > advice I googled for and found on this list. Postfix check is now
> > clean, but as I said, all these open ports appear. I don't
> mind some of
> > them, but I definitely don't want ftp and such things open!
> And why did you believe it was Postfix that opens the telnet and ftp
> ports? Who else has root privileges on this machine?
No one else but me has root access to this machine, and the only thing I
have done apart from fiddling with apache (and I checked, it was fine
when I was done there) was this copying of those files across as
directed by a google of this list for the same problem.
Since those files have something to do with inetd, I just wondered if
postfix was responsible. Certainly something caused it (and according
to last, I am the only person who's logged into the machine). Happily
though, this is not the case when I started postfix this morning. SO
whatever it was, it seems to have been temporary.
My theory is copying the /lib/libnss_winbind.so and wins.so to
/var/spool/postfix/lib/ caused it in some way. The reason I think this
is, as soon as I stopped postfix, all those extra open ports disappeared
(I was using nmap localhost to have a look).
It's not a problem now, but it would be nice to see if the problem is
recreatable. Also, I'd hate for it to occur in the future and I wasn't
aware of it. At the moment I am still quite paranoid about spammers
using the box, so I monitor these things.
Lyd
|
|
|