Simple security question

Mon May 17 11:45:43 PDT 2004

On Sun, 16 Mar 2003 22:33:08 -0500
Joel Hammer <Joel at hammershome.com> wrote:

> Yes.
> 
> Port 6000 allows anyone to attach to your X-server.

And the effect of this would be?  I'm not trying to be a wise ass, I just don't understand all of this.

> xdmcp also allows people to get a login screen to your box.
> Anybody could dump stuff to your printer, too.
> 
> I do not know what is listening to 32768. I do not know what wdm is.

wdm is the login manager (an extended xdm)
> 
> If you want, I could run nmap against your server for your. This stuff

cool.

> is all easy to hide from the world, BTW.
> 
> Joel
> 
> Sun, Mar 16, 2003 at 06:45:09PM -0700, Collins Richey wrote:
> > Simple security question.  I don't do anything special for security, but I got curious enough to issue `lsof -i` just for grins.
> > 
> > 
> > COMMAND  PID USER   FD   TYPE DEVICE SIZE NODE NAME
> > lpd      997   lp    6u  IPv4   2805       TCP *:printer (LISTEN)
> > wdm     1146 root    4u  IPv4   3243       UDP *:xdmcp 
> > wdm     1146 root    5u  IPv4   3244       TCP *:32768 (LISTEN)
> > X       1149 root    1u  IPv4   3249       TCP *:6000 (LISTEN)
> > wdm     1150 root    5u  IPv4   3244       TCP *:32768 (LISTEN)
> > 
> > Given the few ports that are actually listening, do I have much to worry about?
> > 

--
Collins