Greetings Managers,
I have installed a Tru64 5.1A server that is to be connected to the
Internet with limited blocking at the firewall. As such, I would like to
disable all unnecessary services or limit access to them.
Being used to running Digital UNIX 4.0 machines, I have disabled various
daemons similar to some other systems. These are -
snmpd
insightd
advfsd
sendmail
lpd
This leaves a few daemons specific to Tru64 5.x which I am not yet very
familiar with and am concerned at the implications of disabling them.
evmd 6507 root 7u IPv4 0x22d8ef00 0t0 TCP *:evm (LISTEN)
smsd 32722 root 8u IPv4 0x34b7b180 0t0 TCP *:596 (LISTEN)
java 32795 root 6u IPv4 0x3b819e00 0t0 TCP *:316 (LISTEN)
root 6507 1 0.0 00:12:42 ?? 0:00.72 /usr/sbin/evmd
root 32722 1 0.0 15:15:54 ?? 0:02.53 /usr/sbin/smsd -d
root 32795 1 3.8 15:16:32 pts/1 0:00.28 /usr/opt/java118/bin/../bin/alpha/native_threads/java -mx2m
authentication/server/AuthenticationServer
evmd: Event Manager Daemon
According to lsof, this has port 619 open. However the default
configuration of /etc/evmdaemon.conf has 'remote_connection false' which
should disable remote communication.
Is this normal for emvd to keep this TCP port open even though remote
connections are disabled?
smsd: Sysman Station daemon
I assume this incorporates both these other two processes which have port
596 and 316 open. What are the implications of disabling these services
that starts from /sbin/init.d/smauth and /sbin/init.d/smsd? Does this
only limit network access to sysman? I am not that interesting in using
sysman remotely or via graphical interfaces, but just use the text mode
interface on the local machine. This doesn't seem to be affected by
shutting down smauth and smsd.
Thanks,
Joe.
Received on Sun Mar 24 2002 - 09:55:19 NZST