Opened 4 years ago

Closed 4 years ago

#319 closed System Defect (fixed)

Disable some listening ports

Reported by: lme Owned by:
Priority: major Milestone:
Component: System Configuration Version: 8.1-RC1
Keywords: Cc: trac-bugs@…

Description

By default syslog, ntpd and Xorg listen for remote connections. This is unneccessary for a desktop system and could cause security problems.
To close the listening ports do the following.

syslog:
syslogd_flags="-ss" in rc.conf

Xorg:
ServerArgsLocal?="-nolisten tcp" in /usr/local/kde4/kdm/kdmrc

ntp:
sync with FreeBSD's stock ntp.conf which was added some time ago and add
restrict 127.0.0.1
restrict ::1

Change History (1)

comment:1 Changed 4 years ago by kris

  • Resolution set to fixed
  • Status changed from new to closed

Good ideas, committed!

Note: See TracTickets for help on using tickets.