Mission 343

Exposed service inventory

Compare listeners, firewall policy, and enabled service units.

Security administration
8 minutes Advanced Lesson 343 of 360
ssufwsystemctl
Lesson 343 of 360 0/360 lessons 0/17 missions Security administration · 8 minutes
0%
Continue View profile
Ops lab terminal Training lab
New learnerrank 0XP 0%complete
learner@clairos:/home/learner $ Unix ops lab: type a command, press Enter
Instructions 8 minutes

Click any instruction for the command details, the why, and the common mistake to avoid.

List network listeners

Run ss -tulpn.

ss -tulpn
Read firewall policy

Run ufw status verbose.

ufw status verbose
List service units

Run systemctl list-units.

systemctl list-units
Lesson support

What to notice while you play.

Objective

Build repeatable confidence with reconciling exposed ports with intended services.

Hint

Start with ss -tulpn, inspect the result, then continue in order.

Why it matters

Reconciling exposed ports with intended services helps operators explain what they know before they change anything.

Common mistakes
  • Skipping the output that proves reconciling exposed ports with intended services.
  • Changing several things before recording a baseline.
Reference

Commands in this lesson.

systemctl status <service>

Inspect simulated service status.

ss|ip

Inspect simulated sockets and addresses.

ssh|scp|ssh-keygen

Practice SSH inspection and dry-run transfer shapes without network access.

ufw status

Inspect simulated firewall rules.