Solaris 11 / OpenSolaris - stop processes from listening?

Question

I would like to write a script to secure Solaris 11 servers in preparation for internet access.

In addition to enabling ipfilter, I would like to disable network-accessible services that are not used. This should reduce the number of processes shown in ps, and also seems cleaner than relying solely on ipfilter.

Is there a way I can find out what processes or services are currently listening / responsible for open ports on the server? I would need to filter out those that only listen to localhost. I would want to see those that are listening for UDP as well as TCP. If I can get a process ID, or svcs name, that would be great!

Once I have a list, I can configure each one as needed, such as restricting sshd, disabling sendmail, and similar operations for the other services I find on this list.

So how can I get a list?

score 2 · Accepted Answer · answered Dec 02 '14 at 17:23

2

Since the answer body has to be at least 30 symbols, I need to write some stuff here, even the totally dull one, though netstat -aun or even man netstat would be enough.

answered Dec 02 '14 at 17:23

drookie

8,051
1
17
27

Nice. Didn't know you could get process name from `netstat`. Thanks! – 700 Software Dec 03 '14 at 18:58
It's a Solaris 11 new feature. On 10 you would use the shellscript, like it's not 21th century. – drookie Dec 03 '14 at 19:06
+1. To clarify: What is new in Solaris 11 is the `-u` argument on `netstat`. – peterh Dec 07 '14 at 09:54

Solaris 11 / OpenSolaris - stop processes from listening?

1 Answers1