Re: Unknown open ports
Hello All ! The Apache in debian packages very old version, when be new version so 1.3.12. The old version not make with php 4.0 ;-( and has more security problem. --- WBR, Michael Vlasov, Matrix NOC, MICHAEL-RIPN (095) 961-2109 [ www.matrix.ru ] ICQ:12612617
Re: Unknown open ports
I've just run a portscan to my computer that is connected to the internet (permanently) and there were a few ports open of which I don't know what they are for (all ports under 1024) and neither did the portscanner, these are the ports: 686 698 708 If I use telnet to go to one of those ports, the connection isn't closed by the remote host (only after I've typed a few things and pressed enter a few times). Anybody got any ideas on what these ports are for? try rpcinfo -p from the machine see if those ports popup there. -sv
Re: Unknown open ports
On Tue, Jun 06, 2000 at 12:22:33AM +0200, Ron Rademaker wrote: I've just run a portscan to my computer that is connected to the internet (permanently) and there were a few ports open of which I don't know what they are for (all ports under 1024) and neither did the portscanner, these are the ports: 686 698 708 If I use telnet to go to one of those ports, the connection isn't closed by the remote host (only after I've typed a few things and pressed enter a few times). Anybody got any ideas on what these ports are for? Not off the top of my head. The most convienent way I've found to determine is lsof (apt-get install lsof-2.2 or lsof-2.0.36 depending on kernel). Just do a lsof | grep TCP as root and you'll get a list with names pids, and open ports down the right. It's nice. Someone else suggested it was rpc, but if you are actually neo.rademaker.dhs.org (That's what your headers say), that's not it. Oh well. hope this helps greg
Re: Unknown open ports
Well, all processes do claim to be rpc, why did you think that could not be it (I AM neo.rademaker.dhs.org). Ron PS. Thanks anyway (to all), I'll go closing ports ASAP. On Mon, 5 Jun 2000, Greg Olszewski wrote: On Tue, Jun 06, 2000 at 12:22:33AM +0200, Ron Rademaker wrote: I've just run a portscan to my computer that is connected to the internet (permanently) and there were a few ports open of which I don't know what they are for (all ports under 1024) and neither did the portscanner, these are the ports: 686 698 708 If I use telnet to go to one of those ports, the connection isn't closed by the remote host (only after I've typed a few things and pressed enter a few times). Anybody got any ideas on what these ports are for? Not off the top of my head. The most convienent way I've found to determine is lsof (apt-get install lsof-2.2 or lsof-2.0.36 depending on kernel). Just do a lsof | grep TCP as root and you'll get a list with names pids, and open ports down the right. It's nice. Someone else suggested it was rpc, but if you are actually neo.rademaker.dhs.org (That's what your headers say), that's not it. Oh well. hope this helps greg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Unknown open ports
Try netstat -p, it'll tell you which process is on each port. Daniel TaylorEmbedded and custom Linux integration. [EMAIL PROTECTED] (612)747-1609 On Tue, 6 Jun 2000, Ron Rademaker wrote: I've just run a portscan to my computer that is connected to the internet (permanently) and there were a few ports open of which I don't know what they are for (all ports under 1024) and neither did the portscanner, these are the ports: 686 698 708 If I use telnet to go to one of those ports, the connection isn't closed by the remote host (only after I've typed a few things and pressed enter a few times). Anybody got any ideas on what these ports are for? Ron Rademaker -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
