7.3. Securing Network Services
In general, it is a good idea to disable services that you do not use. Kali makes it easy to do this since network services are disabled by default.
As long as services remain disabled, they do not pose any security threat. However, you must be careful when you enable them because:
- there is no firewall by default, so if they listen on all network interfaces, they are effectively publicly available.
- some services have no authentication credentials and let you set them on first use; others have default (and thus widely known) credentials preset. Make sure to (re)set any password to something that only you know.
- many services run as root with full administrator privileges, so the consequences of unauthorized access or a security breach are therefore usually severe.