We had a PCI compliance audit flag us as non-compliant because we’ve got several open ports that have insecure services running behind them. I’d like to simply block these ports, but since there’s no firewall running on VPS - for some reason I can’t fathom - this isn’t possible.
Support said to comment out lines in inetd.conf, but there aren’t any lines in inetd.conf that can be commented out. My next thought was to remove the offending services from /etc/init.d, but I’m too afraid of messing up my VPS.
Has anyone else solved this problem?