From: michael.auria@philips.com
Date: Fri May 09 2003 - 12:48:22 EDT
Here's another good one that might be of use to others as well. Additional
help after a summary; that's great !! Between you guys and google, what else
does a guy need (re SA stuff anyway :-) ...
Michael H.
Auria
800-232-2123 / option 3
Senior Technical Support
Engineer
fax: 408-965-2974
Philips Radiology Oncology Systems (formerly RTP) email:
pros.support@philips.com
Have you registered at the Customer Connection yet?
http://apps1.medical.philips.com
Countless, unseen details are often the only difference between mediocre and
magnificent ...
To: Michael
Auria/MLS/MS/PHILIPS@AMEC
cc:
Subject: Re: SUMMARY: no
time for RTFM
Alexei Kotelnikov Classification:
<alexei@soemail.rutgers.
edu>
05/09/03 09:35 AM
Mike,
Thanks for the nice summary.
Regarding SNMP, its startup script is located in /etc/rc3.d, which is
usually S76snmpdx - it starts daemons /usr/lib/snmp/snmpdx and
/usr/lib/snmp/mibiisa. They both belong to package SUNWsasnm, which you
are planning to un-install according to your list anyway.
Btw, if you like to know what package a system file belongs to, run
command pkgchk, for example,
pkgchk -l -p /usr/lib/snmp/snmpdx
Then if you like to know what the installed package is for, run pkginfo,
for example
pkginfo -l SUNWsasnm
Regards,
Alexei
michael.auria@philips.com wrote:
> Thanks guys, I appreciate the numerous replies (too numerous to list).
All,
> except that one condesending one (we can all learn something; the reason
human
> beings ask questions). Looks like I was almost there (I also appreciate
the
> referances to
> additional security doc for later perusal).
>
> "I would really recommend you reading the Solaris Security Toolkit
document,
> found at
> <http://www.sun.com/blueprints/> when you get the chance.". Really nice to
> hear someone encouraging me on how to learn than to "put me in my place".
>
> Yes, inetd.conf is where to comment simple services like finger. Daemon
based
> services like SMTP need to have their startup files taken out of commission
> too). finger & smtp were commented in inetd.conf, sendmail was killed and
the
> rc3 file was renamed;
> that seem to have done it for those two.
>
> Wasn't able to find a snmp startup file or daemon.
>
> # find / -mount -name "*snmp*"
> /usr/include/inet/snmpcom.h
> # ps -aef|grep snmp
> root 1361 1171 1 07:50:42 pts/6 0:00 grep snmp
> #
>
> Looks like it may not be running after all (maybe that's IT's party line
that
> snmp needs to be disabled too). I got a list of packages to remove, so
I'll
> do that for good measure (pkgrm SUNWsacom SUNWsadmi SUNWsadmx SUNWmipu
> SUNWmipr SUNWsasnm SUNWmibii
> SUNWsasnx)
>
> Thanks again guys and gals. Not sure I'm out of the woods yet but at least
I
> know there's a team of search and rescue folks like you all ...
>
> Michael H.
> Auria
> 800-232-2123 / option 3
> Senior Technical Support
> Engineer
> fax: 408-965-2974
> Philips Radiology Oncology Systems (formerly RTP) email:
> pros.support@philips.com
> Have you registered at the Customer Connection yet?
> http://apps1.medical.philips.com
> Countless, unseen details are often the only difference between mediocre
and
> magnificent ...
>
>
>
>
> To:
> sunmanagers@sunmanagers.org
> cc: (bcc:
> Michael Auria/MLS/MS/PHILIPS)
> Subject: no
> time for RTFM
>
> michael.auria+FromInterNet@philips
Classification:
> .com
>
> Sent by:
> sunmanagers-bounces@sunmanagers.or
> g
>
> 05/09/03 07:26 AM
>
>
>
>
>
>
> Sorry for the simple questions but corp IT has said they need some services
> turned off ASAP, "mostly SMTP, Finger and snmp ".
>
> They mentioned turning them off in inetd.conf but if it's a scanning tool
> determining this then I figure commenting the entries in the /etc/services
> file is sufficient. Is that right ?
>
> Also, I could find no entry in either file for snmp. How does that get
> turned
> off ?
>
> # grep -i smtp services inetd.conf
> services:smtp 25/tcp mail
> # grep -i snmp services inetd.conf
> # grep -i finger services inetd.conf
> services:finger 79/tcp
> inetd.conf:# Finger, systat and netstat give out user information which may
> be
> inetd.conf:finger stream tcp nowait nobody
/usr/sbin/in.fingerd
> in.fingerd
>
> Looks like commenting /etc/services worked for finger.
>
> # finger user@hostname
> [hostname.domain] connect: Connection refused
>
> But not for smtp.
>
> # grep mail services
> # smtp 25/tcp mail
>
> # telnet hostname 25
> Trying xxx.xxx.xxx.xxx ...
> Connected to hostname.domain.
> Escape character is '^]'.
> 220 hostname.hostname.nis Sendmail SMI-8.6/SMI-SVR4 ready at Fri, 9 May
2003
> 06:43:4
> 4 -0700
>
> How do I get smtp service turned off (I've killed sendmail process for now
> but
> am looking for correct method of turning this service off; commenting it's
> startup in rc3.d) ?
>
> Also, how do I turn of snmp (network management service I think).
>
> Help me please ...
>
> Michael H.
> Auria
> 800-232-2123 / option 3
> Senior Technical Support
> Engineer
> fax: 408-965-2974
> Philips Radiology Oncology Systems (formerly RTP) email:
> pros.support@philips.com
> Have you registered at the Customer Connection yet?
> http://apps1.medical.philips.com
> Countless, unseen details are often the only difference between mediocre
and
> magnificent ...
> _______________________________________________
> sunmanagers mailing list
> sunmanagers@sunmanagers.org
> http://www.sunmanagers.org/mailman/listinfo/sunmanagers
> _______________________________________________
> sunmanagers mailing list
> sunmanagers@sunmanagers.org
> http://www.sunmanagers.org/mailman/listinfo/sunmanagers
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:26:23 EDT