Solaris 8 to many open port

hi all,

My OS is solaris 8 with core system installation only. so far everything works fine. by i do some testing from my xp pc as client to nmap and scan opening port to my solaris. the result as below:

Initiating SYN Stealth Scan against 10.10.10.10 [1672 ports] at 16:25
Discovered open port 21/tcp on 10.10.10.10
Discovered open port 23/tcp on 10.10.10.10
Discovered open port 22/tcp on 10.10.10.10
Discovered open port 540/tcp on 10.10.10.10
Discovered open port 32771/tcp on 10.10.10.10
Discovered open port 79/tcp on 10.10.10.10
Discovered open port 13/tcp on 10.10.10.10
Discovered open port 7/tcp on 10.10.10.10
Discovered open port 32777/tcp on 10.10.10.10
Discovered open port 513/tcp on 10.10.10.10
Discovered open port 32778/tcp on 10.10.10.10
Discovered open port 111/tcp on 10.10.10.10
Discovered open port 32779/tcp on 10.10.10.10
Discovered open port 514/tcp on 10.10.10.10
Discovered open port 37/tcp on 10.10.10.10
Discovered open port 4045/tcp on 10.10.10.10
Discovered open port 32780/tcp on 10.10.10.10
Discovered open port 515/tcp on 10.10.10.10
Discovered open port 9/tcp on 10.10.10.10
Discovered open port 512/tcp on 10.10.10.10
Discovered open port 19/tcp on 10.10.10.10
Discovered open port 7100/tcp on 10.10.10.10
The SYN Stealth Scan took 3.84s to scan 1672 total ports.
For OSScan assuming port 7 is open, 1 is closed, and neither are firewalled
Host 10.10.10.10 appears to be up ... good.
Interesting ports on 10.10.10.10:
(The 1650 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
7/tcp open echo
9/tcp open discard
13/tcp open daytime
19/tcp open chargen
21/tcp open ftp
22/tcp open ssh
23/tcp open telnet
37/tcp open time
79/tcp open finger
111/tcp open rpcbind
512/tcp open exec
513/tcp open login
514/tcp open shell
515/tcp open printer
540/tcp open uucp
4045/tcp open lockd
7100/tcp open font-service
32771/tcp open sometimes-rpc5
32777/tcp open sometimes-rpc17
32778/tcp open sometimes-rpc19
32779/tcp open sometimes-rpc21
32780/tcp open sometimes-rpc23

Question: What is the best way to prevent this?...I only open for ssh and ftp only. What kinda firewall solaris mostly use?

thanks

sorry for the question...i found some of people using IPF....i try to googleing around net, and i cannot find package for Solaris 8 for intel pc. if anyone using for intel based pc do you mind to tell me where you download it? thanks

comment out unneeded service from this file /etc/inetd.conf

Ahmad

Or you can use TCP Wrappers for prevent specific hosts to use specific service...

for more info.