Re: [newbie] OT Blocked ports
On Sun, 2003-08-24 at 10:33, HaywireMac wrote: Here's mine, go to town, bud: 64.231.121.215 Ok - so now yer advertising yer puny little box to hack/crack/crash...when shall we commence? -- Sun Aug 24 14:30:00 EST 2003 14:30:00 up 6 days, 16:56, 2 users, load average: 1.26, 1.61, 1.64 - |____ | illawarra computer services| | /-oo /| |'-. | http://kma.0catch.com | | .\__/ || | | || | _ / `._ \|_|_.-' | stephen kuhn | | | / \__.`=._) (_ | email: [EMAIL PROTECTED] | - linux user #:267497 linux machine #:194239 * MDK 9.1+ RH 9 Mandrake Linux Kernel 2.4.21-11mdk Cooker for i586 - * This message was composed on a 100% Microsoft free computer * Law of Communications: The inevitable result of improved and enlarged communications between different levels in a hierarchy is a vastly increased area of misunderstanding. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
Lee Wiggers wrote: On Sat, 23 Aug 2003 14:20:38 -0400 yankl [EMAIL PROTECTED] wrote: On Saturday 23 August 2003 14:03, HaywireMac wrote: On Sat, 23 Aug 2003 12:02:17 -0400 Lee Wiggers [EMAIL PROTECTED] uttered: How can I determine what ports my providing is blocking? try getting someone to telnet to them from outside, for example for postifx, have someone try to telnet to port 25. Some one need to run nmap against your IP address and then diff it with nmap aginst 127.0.0.1. Yankl Any volunteers? 66.176.44.125 I show this on 127.0.0.1 Port State Service 21/tcp openftp 22/tcp openssh 25/tcp opensmtp 37/tcp opentime 53/tcp opendomain 80/tcp openhttp 111/tcpopensunrpc 139/tcpopennetbios-ssn 443/tcpopenhttps 621/tcpopenunknown 631/tcpopenipp 720/tcpopenunknown 783/tcpopenhp-alarm-mgr 953/tcpopenrndc 2049/tcp opennfs 6000/tcp openX11 1/tcp opensnet-sensor-mgmt 32770/tcp opensometimes-rpc3 32771/tcp opensometimes-rpc5 TIA Lee Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) Warning: OS detection will be MUCH less reliable because we did not find at least 1 open and 1 closed TCP port Interesting ports on c-66-176-44-125.se.client2.attbi.com (66.176.44.125): (The 1145 ports scanned but not shown below are in state: filtered) Port State Service Owner 1997/tcp closed gdp-port 2027/tcp closed shadowserver 5050/tcp closed mmcc 5304/tcp closed hacl-local 6699/tcp closed napster Too many fingerprints match this host for me to give an accurate OS guess Nmap run completed -- 1 IP address (1 host up) scanned in 281 seconds -- Brant Fitzsimmons [EMAIL PROTECTED] ___ Linux user #322847 | Linux machine #207465 | http://counter.li.org/ AMD Duron 1.3GHz | Mandrake 9.1 | Kernel 2.4.21-0.25mdkduron KDE 3.1.3 | Mozilla 1.4 Mail Client ___ All truth passes through three stages. First, it is ridiculed. Second, it is violently opposed. Third, it is accepted as being self-evident. -Arthur Schopenhauer (1788-1860) Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
Lee Wiggers wrote: On Sat, 23 Aug 2003 14:20:38 -0400 yankl [EMAIL PROTECTED] wrote: On Saturday 23 August 2003 14:03, HaywireMac wrote: On Sat, 23 Aug 2003 12:02:17 -0400 Lee Wiggers [EMAIL PROTECTED] uttered: How can I determine what ports my providing is blocking? try getting someone to telnet to them from outside, for example for postifx, have someone try to telnet to port 25. Some one need to run nmap against your IP address and then diff it with nmap aginst 127.0.0.1. Yankl Any volunteers? 66.176.44.125 I show this on 127.0.0.1 Port State Service 21/tcp openftp 22/tcp openssh 25/tcp opensmtp 37/tcp opentime 53/tcp opendomain 80/tcp openhttp 111/tcpopensunrpc 139/tcpopennetbios-ssn 443/tcpopenhttps 621/tcpopenunknown 631/tcpopenipp 720/tcpopenunknown 783/tcpopenhp-alarm-mgr 953/tcpopenrndc 2049/tcp opennfs 6000/tcp openX11 1/tcp opensnet-sensor-mgmt 32770/tcp opensometimes-rpc3 32771/tcp opensometimes-rpc5 TIA Lee Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) Warning: OS detection will be MUCH less reliable because we did not find at least 1 open and 1 closed TCP port Interesting ports on c-66-176-44-125.se.client2.attbi.com (66.176.44.125): (The 1145 ports scanned but not shown below are in state: filtered) Port State Service Owner 1997/tcp closed gdp-port 2027/tcp closed shadowserver 5050/tcp closed mmcc 5304/tcp closed hacl-local 6699/tcp closed napster Too many fingerprints match this host for me to give an accurate OS guess Nmap run completed -- 1 IP address (1 host up) scanned in 281 seconds -- Brant Fitzsimmons [EMAIL PROTECTED] ___ Linux user #322847 | Linux machine #207465 | http://counter.li.org/ AMD Duron 1.3GHz | Mandrake 9.1 | Kernel 2.4.21-0.25mdkduron KDE 3.1.3 | Mozilla 1.4 Mail Client ___ All truth passes through three stages. First, it is ridiculed. Second, it is violently opposed. Third, it is accepted as being self-evident. -Arthur Schopenhauer (1788-1860) Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
On Sun, 24 Aug 2003 07:10, Lee Wiggers wrote: On Sat, 23 Aug 2003 14:20:38 -0400 yankl [EMAIL PROTECTED] wrote: Some one need to run nmap against your IP address and then diff it with nmap aginst 127.0.0.1. Yankl Any volunteers? 66.176.44.125 I show this on 127.0.0.1 Port State Service 21/tcp openftp 22/tcp openssh 25/tcp opensmtp 37/tcp opentime 53/tcp opendomain 80/tcp openhttp 111/tcpopensunrpc 139/tcpopennetbios-ssn 443/tcpopenhttps 621/tcpopenunknown 631/tcpopenipp 720/tcpopenunknown 783/tcpopenhp-alarm-mgr 953/tcpopenrndc 2049/tcp opennfs 6000/tcp openX11 1/tcp opensnet-sensor-mgmt 32770/tcp opensometimes-rpc3 32771/tcp opensometimes-rpc5 Output from: # nmap -sS -O 66.176.44.125 - Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) sendto in send_tcp_raw: sendto(3, packet, 40, 0, 66.176.44.125, 16) = Operation not permitted Interesting ports on c-66-176-44-125.se.client2.attbi.com (66.176.44.125): (The 1599 ports scanned but not shown below are in state: filtered) Port State Service 80/tcp openhttp 5050/tcp closed mmcc Nmap run completed -- 1 IP address (1 host up) scanned in 786 seconds - BTW, my dynamic IP address (203.173.202.78) will likely show up in logs whilst scanning your IP address. Sharrea -- Help Microsoft stamp out piracy - give Linux to a friend today Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
On 24 Aug 2003 14:34:46 +1000 Stephen Kuhn [EMAIL PROTECTED] uttered: Ok - so now yer advertising yer puny little box to hack/crack/crash...when shall we commence? Sure, although the IP changed during the night: 64.231.127.100 -- HaywireMac Registered Linux user #282046 Homepage: nodex.sytes.net ++ A halted retreat Is nerve-wracking and dangerous. To retain people as men -- and maidservants Brings good fortune. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
On Sun, 24 Aug 2003 13:08:36 +0100 Anne Wilson [EMAIL PROTECTED] uttered: So why should I not be concerned that ips are visible in email headers? ROTFLMAO! Exactly, Anne, see my post below, I grabbed HIS from the headers... What's that saying about paranoia? Anyhoo... It's definitely less threatening than someone grabbing your telephone number, now, isn't it eh? :-D -- HaywireMac Registered Linux user #282046 Homepage: nodex.sytes.net ++ If you live long enough, you'll see that every victory turns into a defeat. -- Simone de Beauvoir Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
This is somewhat of a hijack, but could be useful for all of us who are suddenly nmapping: ~ $ nmap 127.0.0.1 snip 8081/tcp openblackice-icecap Nmap run completed -- 1 IP address (1 host up) scanned in 1 second [2]+ Exit 107perl popfile.pl .popfile.out 2.popfile.errors (wd: ~/bin/popfile) sure nuf, nmap again shows no 8081. (8081 is used with popfile, no sure what the name blackice is...) Any i dea why nmap kills popfile? Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
On Sun, 24 Aug 2003 08:32:45 -0700 Eric Huff [EMAIL PROTECTED] uttered: no sure what the name blackice is...) Wasn't Blackice some POS, heavily warezed, firewall that a lot of people were using on Windows way back when? Didn't even block outgoing connections, IIRC. -- HaywireMac Registered Linux user #282046 Homepage: nodex.sytes.net ++ In the long run we are all dead. -- John Maynard Keynes Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
On Sunday 24 Aug 2003 4:32 pm, Eric Huff wrote: This is somewhat of a hijack, but could be useful for all of us who are suddenly nmapping: ~ $ nmap 127.0.0.1 snip 8081/tcp openblackice-icecap Nmap run completed -- 1 IP address (1 host up) scanned in 1 second [2]+ Exit 107perl popfile.pl .popfile.out 2.popfile.errors (wd: ~/bin/popfile) sure nuf, nmap again shows no 8081. (8081 is used with popfile, no sure what the name blackice is...) Any i dea why nmap kills popfile? Does it? Not on my box, it doesn't. Popfile uses 8080, btw. Googling on blackice-icecap came up with this http://cert.uni-stuttgart.de/archive/intrusions/2002/08/msg00054.html Icecap appears to be a firewall for windows machines? Anne Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
On Sat, 23 Aug 2003 12:02:17 -0400 Lee Wiggers [EMAIL PROTECTED] uttered: How can I determine what ports my providing is blocking? try getting someone to telnet to them from outside, for example for postifx, have someone try to telnet to port 25. -- HaywireMac Registered Linux user #282046 Homepage: nodex.sytes.net ++ Living in the complex world of the future is somewhat like having bees live in your head. But, there they are. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] OT Blocked ports
On Sat, 23 Aug 2003 14:20:38 -0400 yankl [EMAIL PROTECTED] wrote: On Saturday 23 August 2003 14:03, HaywireMac wrote: On Sat, 23 Aug 2003 12:02:17 -0400 Lee Wiggers [EMAIL PROTECTED] uttered: How can I determine what ports my providing is blocking? try getting someone to telnet to them from outside, for example for postifx, have someone try to telnet to port 25. Some one need to run nmap against your IP address and then diff it with nmap aginst 127.0.0.1. Yankl Any volunteers? 66.176.44.125 I show this on 127.0.0.1 Port State Service 21/tcp openftp 22/tcp openssh 25/tcp opensmtp 37/tcp opentime 53/tcp opendomain 80/tcp openhttp 111/tcpopensunrpc 139/tcpopennetbios-ssn 443/tcpopenhttps 621/tcpopenunknown 631/tcpopenipp 720/tcpopenunknown 783/tcpopenhp-alarm-mgr 953/tcpopenrndc 2049/tcp opennfs 6000/tcp openX11 1/tcp opensnet-sensor-mgmt 32770/tcp opensometimes-rpc3 32771/tcp opensometimes-rpc5 TIA Lee Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com