1,760
edits
Changes
→Features
Distribution: Linux Mint 17
==Features==
** Suggestion:
*** Drop policy on INPUT and Forward chains
<pre>
/sbin/iptables -I FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
</pre>
===smbd and nmbd services ===
* Do you really want to have these on?
<pre>
ict-2014-v1 selinux # netstat -taunp
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 1436/smbd
tcp 0 0 127.0.1.1:53 0.0.0.0:* LISTEN 3237/dnsmasq
tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 3004/cupsd
tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 1436/smbd
tcp6 0 0 :::139 :::* LISTEN 1436/smbd
tcp6 0 0 ::1:631 :::* LISTEN 3004/cupsd
tcp6 0 0 :::445 :::* LISTEN 1436/smbd
tcp6 1 0 ::1:55026 ::1:631 CLOSE_WAIT 2185/cups-browsed
tcp6 0 0 ::1:55028 ::1:631 ESTABLISHED 2635/cinnamon-setti
tcp6 0 0 ::1:631 ::1:55028 ESTABLISHED 3004/cupsd
udp 0 0 127.0.1.1:53 0.0.0.0:* 3237/dnsmasq
udp 0 0 0.0.0.0:68 0.0.0.0:* 3233/dhclient
udp 0 0 172.18.255.255:137 0.0.0.0:* 3361/nmbd
udp 0 0 172.18.81.236:137 0.0.0.0:* 3361/nmbd
udp 0 0 0.0.0.0:137 0.0.0.0:* 3361/nmbd
udp 0 0 172.18.255.255:138 0.0.0.0:* 3361/nmbd
udp 0 0 172.18.81.236:138 0.0.0.0:* 3361/nmbd
udp 0 0 0.0.0.0:138 0.0.0.0:* 3361/nmbd
udp 0 0 0.0.0.0:631 0.0.0.0:* 2185/cups-browsed
udp 0 0 0.0.0.0:5353 0.0.0.0:* 1231/avahi-daemon:
udp 0 0 0.0.0.0:35063 0.0.0.0:* 1231/avahi-daemon:
udp 0 0 0.0.0.0:14647 0.0.0.0:* 3233/dhclient
udp6 0 0 :::52153 :::* 1231/avahi-daemon:
udp6 0 0 :::28749 :::* 3233/dhclient
udp6 0 0 :::5353 :::* 1231/avahi-daemon:
</pre>