Network Services

  • David Basin
  • Patrick Schaller
  • Michael Schläpfer

Abstract

Operating systems typically offer services that can be accessed over the network. A typical example is a server that allows clients to access content on the server using a web browser. In this context, we use the term (network) service to denote an open TCP or UDP port in combination with a process listening on the port. A single process may offer multiple services, for example, the server inetd. In contrast, multiple processes may use the same port, for example, a web server.

Default installations of operating systems often include different network services (e.g., RPC, SMTP and SSH) to simplify system administration. Inexperienced users often install services that are unneeded for their purposes simply to get applications quickly up and running, or to ensure that their system provides full functionality. From the adversary’s point of view, every running service provides a potential point of entry into the system. Noteworthy here are default services that are not monitored. These pose a serious security risk since they often run with default configurations and are not regularly updated. Hence, deactivating or restricting unused services are easy ways to increase system security. The act of reducing a system’s functionality and access permissions to a minimum and thus reducing its attack surface is often called system hardening.

Keywords

Transmission Control Protocol Internet Protocol User Datagram Protocol Domain Name System Internet Protocol Address 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2011

Authors and Affiliations

  • David Basin
    • 1
  • Patrick Schaller
    • 1
  • Michael Schläpfer
    • 1
  1. 1.ETH ZurichZurichSwitzerland

Personalised recommendations