> May be I need to re-phrase my response but the point I want > to make is still the same. It is pretty well-known that many > trojans and back-doors make use of the port 9999. Many > firewalls and companies block that port as well.
Well, most companies block all inbound traffic, then allow exceptions as needed. As far as I can tell, there's been one well-known trojan that listens on this port, but the port isn't the installation vector for the trojan anyway - it's how the attacker controls the trojan once it's installed. I've never heard of any network administrators blocking TCP/9999 specifically as a result. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:231534 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54