I have subscribed to numerous security lists, setup up2date/RHN, and have cpanel cron job to update other software. I also have daily, weekly, and monthly backups setup (local and remotely). Is their anything else I can do to tighten down security and safeguard? Can i turn off any of the ports listed below?

What is tcpmux, domain, sunrpc, unkown, rndc?

Starting nmap V. 2.54BETA31 ( www.insecure.org/nmap/ )
Interesting ports on localhost (127.0.0.1):
(The 1538 ports scanned but not shown below are in state: closed)
Port State Service
1/tcp open tcpmux
21/tcp open ftp
22/tcp open ssh
25/tcp open smtp
53/tcp open domain
80/tcp open http
110/tcp open pop-3
111/tcp open sunrpc
143/tcp open imap2
225/tcp open unknown
443/tcp open https
465/tcp open smtps
953/tcp open rndc
993/tcp open imaps
995/tcp open pop3s
3306/tcp open mysql

It's not recommended that you remove the services, rather than use your firewall to block all ports except ones which you explicitly allow. Which if you figure out the port is needed, you can always grant access. Doing that, works out much better in the long run.

-0pt

Does anyone have an agressive firewall script that I can use? I am just using the default rules.