Working on a rather vanilla install of RH7.3, and I've got a few pesky ports that I have open, but want to close or want more info on why they are open:
TCP/111 and UDP/111 (Sun RPC) are listening, but I dont need them (dont need NFS), how can I close them?
TCP/6000 (X Windows) is listening, but I dont want to accept remote X connections... how can I make it localhost only?
TCP/32768, UDP/32768 TCP/32769 are all listening, and google searches return various reasons... what are these and how do I close them?

BTW, the help guides on ln are super-helpful.

To stop X from listening on port 6000, try changing the line in /etc/X11/xdm/Xservers which reads:

:0 local /usr/X11R6/bin/X

to:

:0 local /usr/X11R6/bin/X -nolisten tcp

Works perfect, thanks for the help DMR... anyone have ideas on the other four?

111 is portmap (sunrpc)... if you aren't doing nfs/nis, then you don't need it...

The other ports are probably rpc services that will stop when you kill portmap.

As for port 111, you can, as previously suggested, kill portmap altogether. Here's a link (http://www.debian.org/doc/manuals/securing-debian-howto/ch3.en.html#s-disableserv) to some info on a few ways to do this.

while we are at this subject.....i've got port 644 open......but it says as unknown......anybody have any idea as to what that is?

http://www.networksorcery.com/enp/protocol/ip/ports00000.htm

that says its "dwr"... not sure what dwr is, though.