Stopping port 6112 from listening

I have a Solaris 10 host with a zero-length inetd.conf file. This should prevent inetd from offering any open ports, but it does not. Even with a zero-length inetd.conf file, inetd opens port 6112.

There are numerous warnings about port 6112 out on the net, it is associated with "dtspcd". But on this host dtspcd is not running.

This behavior just started happening in the last 3 or 4 months for me, it appears. Hosts installed with pretty much the same package list (including CDE) about a year ago did not do this.

Does by chance inetd read in some configuration file in addition to inetd.conf now?

Thanks -wsanders

[652 byte] By [wsandersa] at [2007-11-27 5:10:13]

«« Math.random question (no it is not a random question..I think)
»» Logout URL for the AM 7.1

# 1

inetd is now based on smf. So inetd.conf is only there for backwards compability.It provides a mechanism for convertind old style inetd.conf entries to smf services.

robert.cohena at 2007-7-12 10:30:13 >

top of Java-index,General,Talk to the Sysop...

# 2

Good point. Inetd still runs, although, yes, its configuration is smf based. So there could be something buried in the 59 lines on junk printed out by "svcprop inetd".

I'm disappointed that Solaris 10 started out on the right foot but seems to have reverted to its historical tendency to make it difficult to configure a system without open port vulnerabilities.

wsandersa at 2007-7-12 10:30:13 >

# 3

Its a lot better than it was.

By disabling unnecessary services, my machines with rpc and nfs running are only listening on about 5 ports.

If I don't need nfs, its trivial to get that down to just sshd.

And the rpcbind is tcp wrappers aware these days, so I can lock down which IP ranges it will accept connections from.

robert.cohena at 2007-7-12 10:30:13 >

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

Stopping port 6112 from listening

General Hot Topic

General

All Classified