OK boleh terima. Ada lagi. On Fri, Sep 23, 2011 at 10:59 PM, fenris <[email protected]> wrote: > Postfix - open relay? > > Sent from my iPhone > > On Sep 23, 2011, at 9:30 PM, Harisfazillah Jamel <[email protected]> > wrote: > >> Cari Kelemahan Sebuah Perisian Dari Hasil NMAP Ini >> >> Kuiz untuk hari ini. >> >> >> :) >> >> >> ----------- >> >> linuxmalaysia@linuxmalaysia-laptop:~$ sudo nmap -sS -sU -T4 -A -v -PE >> -PP -PS80,443 -PA3389 -PU40125 -PY -g 53 --script all 127.0.0.1 >> >> Starting Nmap 5.00 ( http://nmap.org ) at 2011-09-23 20:53 MYT >> NSE: Loaded 59 scripts for scanning. >> Initiating SYN Stealth Scan at 20:53 >> Scanning localhost (127.0.0.1) [1000 ports] >> Discovered open port 25/tcp on 127.0.0.1 >> Discovered open port 80/tcp on 127.0.0.1 >> Discovered open port 53/tcp on 127.0.0.1 >> Discovered open port 3306/tcp on 127.0.0.1 >> Discovered open port 9050/tcp on 127.0.0.1 >> Discovered open port 5432/tcp on 127.0.0.1 >> Discovered open port 5902/tcp on 127.0.0.1 >> Discovered open port 5800/tcp on 127.0.0.1 >> Discovered open port 631/tcp on 127.0.0.1 >> Completed SYN Stealth Scan at 20:53, 0.07s elapsed (1000 total ports) >> Initiating UDP Scan at 20:53 >> Scanning localhost (127.0.0.1) [1000 ports] >> Completed UDP Scan at 20:53, 1.24s elapsed (1000 total ports) >> Initiating Service scan at 20:53 >> Scanning 13 services on localhost (127.0.0.1) >> Discovered open port 53/udp on 127.0.0.1 >> Discovered open|filtered port 53/udp on localhost (127.0.0.1) is actually >> open >> Completed Service scan at 20:54, 55.04s elapsed (13 services on 1 host) >> Initiating OS detection (try #1) against localhost (127.0.0.1) >> Retrying OS detection (try #2) against localhost (127.0.0.1) >> Retrying OS detection (try #3) against localhost (127.0.0.1) >> Retrying OS detection (try #4) against localhost (127.0.0.1) >> Retrying OS detection (try #5) against localhost (127.0.0.1) >> NSE: Script scanning 127.0.0.1. >> NSE: Starting runlevel 1 scan >> Initiating NSE at 20:54 >> Completed NSE at 20:54, 14.02s elapsed >> NSE: Script Scanning completed. >> Host localhost (127.0.0.1) is up (0.000075s latency). >> Interesting ports on localhost (127.0.0.1): >> Not shown: 1987 closed ports >> PORT STATE SERVICE VERSION >> 25/tcp open smtp Postfix smtpd >> |_ smtp-commands: EHLO linuxmalaysia-laptop, PIPELINING, SIZE >> 10240000, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN >> |_ banner: 220 linuxmalaysia-laptop ESMTP Postfix (Ubuntu) >> |_ smtp-open-relay: OPEN RELAY found. >> 53/tcp open domain ISC BIND 9.7.0-P1 >> | dns-zone-transfer: >> | localhost SOA localhost root.localhost >> | localhost NS localhost >> | localhost A 127.0.0.1 >> | localhost AAAAA >> |_ localhost SOA localhost root.localhost >> 80/tcp open http Apache httpd 2.2.14 ((Ubuntu)) >> |_ html-title: Site doesn't have a title (text/html). >> |_ http-iis-webdav-vuln: ERROR: This web server is not supported. >> 631/tcp open ipp CUPS 1.4 >> 3306/tcp open mysql MySQL 5.1.41-3ubuntu12.10 >> | banner: A\x00\x00\x00\x0A5.1.41-3ubuntu12.10\x00#\x00\x00\x00KO/:ubjm\x >> |_ 00\xFF\xF7\x08\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x... >> | mysql-info: Protocol: 10 >> | Version: 5.1.41-3ubuntu12.10 >> | Thread ID: 36 >> | Some Capabilities: Long Passwords, Connect with DB, Compress, ODBC, >> Transactions, Secure Connection >> | Status: Autocommit >> |_ Salt: OMpnYRnT9`Y{$96@|tOn >> 5432/tcp open postgresql PostgreSQL DB >> 5800/tcp open vnc iTALC >> |_ banner: ISD 001.000 >> 5902/tcp open vnc VNC (protocol 3.8) >> |_ banner: RFB 003.008 >> 9050/tcp open tor-socks Tor SOCKS Proxy >> 53/udp open domain ISC BIND 9.7.0-P1 >> |_ dns-recursion: Recursion appears to be enabled >> |_ dns-random-srcport: 209.85.174.84 is GREAT: 6 queries in 4.6 >> seconds from 6 ports with std dev 4202 >> |_ dns-random-txid: 209.85.174.81 is GREAT: 25 queries in 12.6 seconds >> from 25 txids with std dev 18176 >> 68/udp open|filtered dhcpc >> 631/udp open|filtered ipp >> 5353/udp open|filtered zeroconf >> No exact OS matches for host (If you know what OS is running on it, >> see http://nmap.org/submit/ ). >> TCP/IP fingerprint: >> OS:SCAN(V=5.00%D=9/23%OT=25%CT=1%CU=2%PV=N%DS=0%G=Y%TM=4E7C8191%P=i686-pc-l >> OS:inux-gnu)SEQ(SP=C5%GCD=1%ISR=CC%TI=Z%CI=Z%II=I%TS=8)OPS(O1=M400CST11NW6% >> OS:O2=M400CST11NW6%O3=M400CNNT11NW6%O4=M400CST11NW6%O5=M400CST11NW6%O6=M400 >> OS:CST11)WIN(W1=8000%W2=8000%W3=8000%W4=8000%W5=8000%W6=8000)ECN(R=Y%DF=Y%T >> OS:=40%W=8018%O=M400CNNSNW6%CC=Y%Q=)T1(R=Y%DF=Y%T=40%S=O%A=S+%F=AS%RD=0%Q=) >> OS:T2(R=N)T3(R=Y%DF=Y%T=40%W=8000%S=O%A=S+%F=AS%O=M400CST11NW6%RD=0%Q=)T4(R >> OS:=Y%DF=Y%T=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T5(R=Y%DF=Y%T=40%W=0%S=Z%A=S+%F= >> OS:AR%O=%RD=0%Q=)T6(R=Y%DF=Y%T=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T7(R=Y%DF=Y%T= >> OS:40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)U1(R=Y%DF=N%T=40%IPL=164%UN=0%RIPL=G%RID >> OS:=G%RIPCK=G%RUCK=G%RUD=G)IE(R=Y%DFI=N%T=40%CD=S) >> >> Uptime guess: 0.101 days (since Fri Sep 23 18:29:41 2011) >> Network Distance: 0 hops >> TCP Sequence Prediction: Difficulty=197 (Good luck!) >> IP ID Sequence Generation: All zeros >> Service Info: Host: linuxmalaysia-laptop >> >> Read data files from: /usr/share/nmap >> OS and Service detection performed. Please report any incorrect >> results at http://nmap.org/submit/ . >> Nmap done: 1 IP address (1 host up) scanned in 82.64 seconds >> Raw packets sent: 2099 (80.102KB) | Rcvd: 3220 (155.222KB) >> _______________________________________________ >> OWASP-Malaysia mailing list >> [email protected] >> https://lists.owasp.org/mailman/listinfo/owasp-malaysia >> >> OWASP Malaysia Wiki >> http://www.owasp.my >> >> OWASP Malaysia Facebook >> http://www.facebook.com/OWASP.Malaysia >> >> OWASP Malaysia Twitter #owaspmy >> http://www.twitter.com/owaspmy > _______________________________________________ > OWASP-Malaysia mailing list > [email protected] > https://lists.owasp.org/mailman/listinfo/owasp-malaysia > > OWASP Malaysia Wiki > http://www.owasp.my > > OWASP Malaysia Facebook > http://www.facebook.com/OWASP.Malaysia > > OWASP Malaysia Twitter #owaspmy > http://www.twitter.com/owaspmy >
-- Malaysia Open Source Software Conference 2011 MOSC2011 http://www.mosc.my/ Malaysia Open Source Conference 2012 (MOSC2012) http://portal.mosc.my/ LinuxMalaysia Network http://www.facebook.com/Bukan.Sekadar.Internet.Sahaja Harisfazillah Jamel _______________________________________________ OWASP-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
