Abstract
Operating systems typically offer services that can be accessed over the network. A typical example is a server that allows clients to access content on the server using a web browser. In this context, we use the term (network) service to denote an open TCP or UDP port in combination with a process listening on the port. A single process may offer multiple services, for example, the server inetd. In contrast, multiple processes may use the same port, for example, a web server.
Default installations of operating systems often include different network services (e.g., RPC, SMTP and SSH) to simplify system administration. Inexperienced users often install services that are unneeded for their purposes simply to get applications quickly up and running, or to ensure that their system provides full functionality. From the adversary’s point of view, every running service provides a potential point of entry into the system. Noteworthy here are default services that are not monitored. These pose a serious security risk since they often run with default configurations and are not regularly updated. Hence, deactivating or restricting unused services are easy ways to increase system security. The act of reducing a system’s functionality and access permissions to a minimum and thus reducing its attack surface is often called system hardening.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this chapter
Cite this chapter
Basin, D., Schaller, P., Schläpfer, M. (2011). Network Services. In: Applied Information Security. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-24474-2_3
Download citation
DOI: https://doi.org/10.1007/978-3-642-24474-2_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-24473-5
Online ISBN: 978-3-642-24474-2
eBook Packages: Computer ScienceComputer Science (R0)