S 5.16 Survey of network services

Initiation responsibility: Administrator, IT Security Officer

Implementation responsibility: Administrator

Before the security check of individual network services and processes is started in Unix, a survey of the services that must be made available in general and the services that may already have been installed should be drawn up first. For the latter, it is helpful to generate a list of all network processes with the help of the ps command and the corresponding options. Then, information about the task of each of these processes and about where it is started with which options should be obtained. Frequently, this is performed in the files /etc/rc, /etc/rc.net, /etc/rc.local read during system boot.

The inetd daemon is of particular importance, because it is able to start all processes listed in the /etc/inetd.conf file. Configuration files such as /etc/services, /etc/protocols, /etc/hosts, /etc/gated.conf and other files must also be checked.

Review questions:

• Is there a current survey of the network services required and enabled in Unix and their tasks for the organisation?