Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Xinetd problem, please help :(

Discussion in 'General Discussion' started by sh4ka, Sep 18, 2005.

  1. sh4ka

    sh4ka Well-Known Member

    Joined:
    May 12, 2005
    Messages:
    444
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    US
    cPanel Access Level:
    DataCenter Provider
    I saw the server report today and there is a new port open

    113/tcp open auth


    root@server [~]# fuser -v 113/tcp

    USER PID ACCESS COMMAND
    113/tcp root 1969 f.... xinetd

    root@server [~]# ps -aux | grep "xinetd"
    root 1969 0.0 0.0 2136 912 ? S 08:41 0:00 xinetd -stayalive -pidfile /var/run/xinetd.pid

    I kill all the xinetd process, restart xinetd, also rebooted the box and port still there..
    I have a few cPanel servers and I have never seen this port open, can anyone tell me what is that port ? and how to close it ? I am using RH Ent. 3 .

    thkz!

    pd: this rare port appear today after a kiddie using a script attacked one of the php-nuke websites I have hosted at the server.
     
    #1 sh4ka, Sep 18, 2005
  2. dave9000

    dave9000 Well-Known Member

    Joined:
    Apr 7, 2003
    Messages:
    891
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    arkansas
    cPanel Access Level:
    Root Administrator
    port 113 is the identd port that is used mostly for puter identification for irc servers.
    I would check your box over carefully for a running irc server and any more open ports that were not there before. Also run rkhunter and see if it reports any issues
     
    #2 dave9000, Sep 18, 2005
  3. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,472
    Likes Received:
    20
    Trophy Points:
    463
    Location:
    Go on, have a guess
    You need to edit /etc/xinetd.d/auth and change the disable line to:

    disable = yes

    then restart xinetd:

    service xinetd restart
     
    #3 chirpy, Sep 18, 2005
  4. sh4ka

    sh4ka Well-Known Member

    Joined:
    May 12, 2005
    Messages:
    444
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    US
    cPanel Access Level:
    DataCenter Provider
    Thank you! ;)
     
    #4 sh4ka, Sep 18, 2005
(You must log in or sign up to post here.)
Loading...
Similar Threads - Xinetd problem please
  1. alexis75

    FTP upload problem

    alexis75, Sep 18, 2017 at 2:59 PM, in forum: General Discussion
    Replies:
    2
    Views:
    40
    cPanelMichael
    Sep 19, 2017 at 10:25 AM
  2. jazee

    Problem Enabling Browser Caching

    jazee, Sep 15, 2017 at 4:21 PM, in forum: Workarounds and Optimization
    Replies:
    3
    Views:
    67
    cPanelMichael
    Sep 19, 2017 at 8:57 AM
  3. Alessandro Ferrara

    Problem on max_execution_time

    Alessandro Ferrara, Sep 15, 2017 at 1:42 AM, in forum: EasyApache
    Replies:
    6
    Views:
    93
    Infopro
    Sep 19, 2017 at 4:19 AM
  4. Wesley Maia

    SOLVED Erro no email "451 temporary local problem"

    Wesley Maia, Sep 12, 2017, in forum: Discussões em Português
    Replies:
    4
    Views:
    79
    cPanelMichael
    Sep 12, 2017
  5. mehditaly

    Problem renew AutoSSL

    mehditaly, Sep 11, 2017, in forum: Security
    Replies:
    5
    Views:
    118
    mehditaly
    Sep 12, 2017

Share This Page