Hi Sorry for not coming today (jolug meeting), I'll do my best to attend next time. Hmmm, I found an open port on one of the servers at work (Redhat9) to a remote port : 6667, which is used as I know for IRC, I found it weirdo because the server shouldn't connect to it :s I googled around and found the below links: http://www.bindview.com/Services/RAZOR/Advisories/2001/adv_LkIPmasq.cfm http://www.sarc.com/avcenter/venc/data/linux.backdoor.kaiten.html
I closed the port through iptables, but still would like to know whether it is a backdoor thingy or anything else. Any idea? Regards, Issam Hambouz --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Jolug" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups-beta.google.com/group/Jolug?hl=en-GB -~----------~----~----~----~------~----~------~--~---
