What service runs on UDP port 1035? I did not see it in /etc/services and
netstat says that it's active along with tcp 1 and 6 (and others but I know
those).
Is this normal or should I be scared?
--
Tim Uckun
Mobile Intelligence
On Fri, Apr 06, 2001 at 11:57:51PM -0500, Vinh Truong wrote:
* Karl E. Jorgensen [EMAIL PROTECTED] [010406 15:23]:
Sounds like you need to talk to your firewall administrator. If you trust
him that is... How can you be sure that he's not snooping on the passing
telnet traffic?
hmm,
Yep. Ssh does. But telnet doesn't. And it *does* look a bit suspicious if
your firewall administrator tries to encourage telnet and block ssh...
Personally, I think this is more a case of the administrator just wanting
to open "standard" services... and ssh isn't considered "standard". Most
Simple solution.
Turn off all services and justify each open port.
At the network level block all but ports needed from the outside
(e.g. ssh may be needed, but does the outside need to be able to get
to it? or if you have a static ip on dialup you could add a rule
for this to allow you to get
On Sat, Apr 07, 2001 at 03:05:34AM -0500, S. Salman Ahmed wrote:
Same here, installing klogd fixed the problem. kernel messages do get
logged to /var/log/kern.log. Just out of curiosity I decided to remove
klogd to see if the old problem would reappear, but after purging klogd
from my
* Jean-Marc Boursot [EMAIL PROTECTED] [010406 21:09]:
They allow telnet and not ssh? Nice!
yeah, afraid of the port-forwarding capabilities in ssh. i can see
their point but i'm just as leery of clear-text transmission. oh, well.
So you can turn it off.
should of thought of that myself. :)
* Karl E. Jorgensen [EMAIL PROTECTED] [010406 15:23]:
Sounds like you need to talk to your firewall administrator. If you trust
him that is... How can you be sure that he's not snooping on the passing
telnet traffic?
hmm, i thought that ssh encrypted traffic between server and client?
* Patrick Maheral [EMAIL PROTECTED] [010406 16:57]:
Is the firewall blocking all traffic that has a destination port 22, or
or a source port 22? If only the latter, you can tell your ssh client
to use a high port number. With OpenSSH, from work I use:
ssh -P home #
On Sat, Apr 07, 2001 at 12:19:38AM -0500, Vinh Truong wrote:
* Patrick Maheral [EMAIL PROTECTED] [010406 16:57]:
Is the firewall blocking all traffic that has a destination port 22, or
or a source port 22? If only the latter, you can tell your ssh client
to use a high port number. With
What service runs on UDP port 1035? I did not see it in /etc/services and
netstat says that it's active along with tcp 1 and 6 (and others but I know
those).
Is this normal or should I be scared?
--
Tim Uckun
Mobile Intelligence
On 07 Apr 2001 01:27:54 -0700, Tim Uckun wrote:
What service runs on UDP port 1035? I did not see it in /etc/services and
netstat says that it's active along with tcp 1 and 6 (and others but I know
those).
bind does this. It actually binds a UDP port 1024 on startup. Try
fuser -v -n udp
On 07 Apr 2001 09:34:44 +0200
Berend De Schouwer [EMAIL PROTECTED] wrote:
On 07 Apr 2001 01:27:54 -0700, Tim Uckun wrote:
What service runs on UDP port 1035? I did not see it in /etc/services and
netstat says that it's active along with tcp 1 and 6 (and others but I know
those).
bind
bind does this. It actually binds a UDP port 1024 on startup. Try
fuser -v -n udp 1035 to find out.
Ah it was bind. Thanks I did not know about the fuser command.
Is this normal or should I be scared?
First find out why its there before you panic. Either fuser or lsof
will tell you.
On Fri, Apr 06, 2001 at 11:57:51PM -0500, Vinh Truong wrote:
* Karl E. Jorgensen [EMAIL PROTECTED] [010406 15:23]:
Sounds like you need to talk to your firewall administrator. If you trust
him that is... How can you be sure that he's not snooping on the passing
telnet traffic?
hmm, i
Yep. Ssh does. But telnet doesn't. And it *does* look a bit suspicious if
your firewall administrator tries to encourage telnet and block ssh...
Personally, I think this is more a case of the administrator just wanting
to open standard services... and ssh isn't considered standard. Most
of the
Simple solution.
Turn off all services and justify each open port.
At the network level block all but ports needed from the outside
(e.g. ssh may be needed, but does the outside need to be able to get
to it? or if you have a static ip on dialup you could add a rule
for this to allow you to get to
On Sat, Apr 07, 2001 at 03:05:34AM -0500, S. Salman Ahmed wrote:
Same here, installing klogd fixed the problem. kernel messages do get
logged to /var/log/kern.log. Just out of curiosity I decided to remove
klogd to see if the old problem would reappear, but after purging klogd
from my firewall
17 matches
Mail list logo
