How to close ports / disable services?

services

Solution 1:

Port 25 is, as your post already says, SMTP. This means there is a mailserver installed and listening to requests on your port 25. This is quite unusual on a desktop computer, propably happened accidentaly while installing another program that sends emails.

Port 631 is the port for CUPS, the printer driver software. This is quite usual as it comes with the default installation. If you configure your computer for sharing printers, port 631 will always be open to the other computers, so they can use the printer.

If you want to find out, which exact program is responsible for an open port, type:

sudo fuser -v 25/tcp

replacing 25 in the example with your desired port. This should tell you which program is running.

From then on, you have several possibilities. First, you can just uninstall the corresponding program, in this case the mailserver that's running. Second, if you want to keep the program, you could try just stopping the service, like so:

sudo stop exim4

Please note that YMMV here, as different programs use different filenames for their services and could be started in a totally different way.

Also, please note that scanning your computer from itself will reveal ports that are open only on localhost. Those are closed to the outside but need to be open to localhost, like Cups. This does not pose a security risk.

Solution 2:

Your best bet generally is to run a firewall from day one -

sudo ufw enable
  • which will block all inbound traffic by default. This gives peace of mind that if you install something that silently opens ports on your system (such as enabling network printing), then you're still protected generally.

Conversely, this will mean that you will install services, forget a firewall is running and wonder why nothing is working!

Add smtp by simply typing sudo ufw allow in smtp (for example). Do man ufw for further useful examples.

You can also modify the firewall graphically :

sudo apt-get install gufw

then run the firewall manager from System/Administration/Firewall.

alt text

Related

How can I type Japanese characters?
How to create a deb package for a python3 script?
How can I change the Desktop folder path? [duplicate]
How to make Hyper and Super keys not do the same thing?
How to remove systemd from Ubuntu 16.04 and prevent its usage
Setting permission for NTFS partition [duplicate]
How do I add a daemon to my Quickly application?
Install Python 3 alongside python 2.7 on Ubuntu 18.04
I can't start a new project on Netbeans
How to know which processes have the DISPLAY variable set?
Permissions for Video folder for minidlna?
How to get wifi direct( wifi p2p) on my HP DM1 laptop?