I'm going to install Bastille on a CPanel box and could use some advice on ports
I've decided to bite the bullet and install Bastille/PSAD on my WHM server. I've only installed Bastille combined with Ensim in the past and could use some help identifying the ports to keep open. The below was taken from an Ensim howto:
------------------------------------------------------------------------------------
Q: TCP service names or port numbers to allow on public interfaces:[ ]
Type '20 21 22 25 53 80 110 443 19638', press [TAB], choose 'next' then press [RETURN].
------------------------------------------------------------------------------------
This obviously has to be changed to include 2082, 2083, 2086 and 2087 and drop 19638. Any more you can think of?
------------------------------------------------------------------------------------
Q: UDP service names or port numbers to allow on public interfaces:[ ]
Type '53', press [TAB], choose 'next' then press [RETURN].
------------------------------------------------------------------------------------
This is really my main question. Is it port 53 and only 53 on a CPanel server? I haven't found anything about this as yet.
------------------------------------------------------------------------------------
Q: TCP services to block: [2049 2065:2090 6000:6020 7100]
Press [TAB], choose 'next' and press [RETURN].
Q: UDP services to block: [2049 6770]
Press [TAB], choose 'next' and press [RETURN]
------------------------------------------------------------------------------------
I assume this will also work for CPanel.
Thanks for your time.
