Here's another good one that might be of use to others as well. Additional help after a summary; that's great !! Between you guys and google, what else does a guy need (re SA stuff anyway :-) ... Michael H. Auria 800-232-2123 / option 3 Senior Technical Support Engineer fax: 408-965-2974 Philips Radiology Oncology Systems (formerly RTP) email: pros.support@philips.com Have you registered at the Customer Connection yet? http://apps1.medical.philips.com Countless, unseen details are often the only difference between mediocre and magnificent ... To: Michael Auria/MLS/MS/PHILIPS@AMEC cc: Subject: Re: SUMMARY: no time for RTFM Alexei Kotelnikov Classification: <alexei@soemail.rutgers. edu> 05/09/03 09:35 AM Mike, Thanks for the nice summary. Regarding SNMP, its startup script is located in /etc/rc3.d, which is usually S76snmpdx - it starts daemons /usr/lib/snmp/snmpdx and /usr/lib/snmp/mibiisa. They both belong to package SUNWsasnm, which you are planning to un-install according to your list anyway. Btw, if you like to know what package a system file belongs to, run command pkgchk, for example, pkgchk -l -p /usr/lib/snmp/snmpdx Then if you like to know what the installed package is for, run pkginfo, for example pkginfo -l SUNWsasnm Regards, Alexei michael.auria@philips.com wrote: > Thanks guys, I appreciate the numerous replies (too numerous to list). All, > except that one condesending one (we can all learn something; the reason human > beings ask questions). Looks like I was almost there (I also appreciate the > referances to > additional security doc for later perusal). > > "I would really recommend you reading the Solaris Security Toolkit document, > found at > <http://www.sun.com/blueprints/> when you get the chance.". Really nice to > hear someone encouraging me on how to learn than to "put me in my place". > > Yes, inetd.conf is where to comment simple services like finger. Daemon based > services like SMTP need to have their startup files taken out of commission > too). finger & smtp were commented in inetd.conf, sendmail was killed and the > rc3 file was renamed; > that seem to have done it for those two. > > Wasn't able to find a snmp startup file or daemon. > > # find / -mount -name "*snmp*" > /usr/include/inet/snmpcom.h > # ps -aef|grep snmp > root 1361 1171 1 07:50:42 pts/6 0:00 grep snmp > # > > Looks like it may not be running after all (maybe that's IT's party line that > snmp needs to be disabled too). I got a list of packages to remove, so I'll > do that for good measure (pkgrm SUNWsacom SUNWsadmi SUNWsadmx SUNWmipu > SUNWmipr SUNWsasnm SUNWmibii > SUNWsasnx) > > Thanks again guys and gals. Not sure I'm out of the woods yet but at least I > know there's a team of search and rescue folks like you all ... > > Michael H. > Auria > 800-232-2123 / option 3 > Senior Technical Support > Engineer > fax: 408-965-2974 > Philips Radiology Oncology Systems (formerly RTP) email: > pros.support@philips.com > Have you registered at the Customer Connection yet? > http://apps1.medical.philips.com > Countless, unseen details are often the only difference between mediocre and > magnificent ... > > > > > To: > sunmanagers@sunmanagers.org > cc: (bcc: > Michael Auria/MLS/MS/PHILIPS) > Subject: no > time for RTFM > > michael.auria+FromInterNet@philips Classification: > .com > > Sent by: > sunmanagers-bounces@sunmanagers.or > g > > 05/09/03 07:26 AM > > > > > > > Sorry for the simple questions but corp IT has said they need some services > turned off ASAP, "mostly SMTP, Finger and snmp ". > > They mentioned turning them off in inetd.conf but if it's a scanning tool > determining this then I figure commenting the entries in the /etc/services > file is sufficient. Is that right ? > > Also, I could find no entry in either file for snmp. How does that get > turned > off ? > > # grep -i smtp services inetd.conf > services:smtp 25/tcp mail > # grep -i snmp services inetd.conf > # grep -i finger services inetd.conf > services:finger 79/tcp > inetd.conf:# Finger, systat and netstat give out user information which may > be > inetd.conf:finger stream tcp nowait nobody /usr/sbin/in.fingerd > in.fingerd > > Looks like commenting /etc/services worked for finger. > > # finger user@hostname > [hostname.domain] connect: Connection refused > > But not for smtp. > > # grep mail services > # smtp 25/tcp mail > > # telnet hostname 25 > Trying xxx.xxx.xxx.xxx ... > Connected to hostname.domain. > Escape character is '^]'. > 220 hostname.hostname.nis Sendmail SMI-8.6/SMI-SVR4 ready at Fri, 9 May 2003 > 06:43:4 > 4 -0700 > > How do I get smtp service turned off (I've killed sendmail process for now > but > am looking for correct method of turning this service off; commenting it's > startup in rc3.d) ? > > Also, how do I turn of snmp (network management service I think). > > Help me please ... > > Michael H. > Auria > 800-232-2123 / option 3 > Senior Technical Support > Engineer > fax: 408-965-2974 > Philips Radiology Oncology Systems (formerly RTP) email: > pros.support@philips.com > Have you registered at the Customer Connection yet? > http://apps1.medical.philips.com > Countless, unseen details are often the only difference between mediocre and > magnificent ... > _______________________________________________ > sunmanagers mailing list > sunmanagers@sunmanagers.org > http://www.sunmanagers.org/mailman/listinfo/sunmanagers > _______________________________________________ > sunmanagers mailing list > sunmanagers@sunmanagers.org > http://www.sunmanagers.org/mailman/listinfo/sunmanagers _______________________________________________ sunmanagers mailing list sunmanagers@sunmanagers.org http://www.sunmanagers.org/mailman/listinfo/sunmanagersReceived on Fri May 9 19:25:27 2003
This archive was generated by hypermail 2.1.8 : Thu Mar 03 2016 - 06:43:10 EST