[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Hacker activity?
- Subject: RE: [cobalt-security] Hacker activity?
- From: "Drage, Nicholas" <nickd@xxxxxxxxx>
- Date: Wed, 21 Feb 2001 10:18:39 -0000
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> -----Original Message-----
> From: Rodrigo Velasco [mailto:rvelasco@xxxxxxx]
> Sent: 20 February 2001 14:49
> This is a piece of my last downloaded log-file from my Raq4i, I'm just
> starting to create web sites on it an I've already installed
> all the patches Cobalt released.
> I am concerned about the activity logfile display every 15
> minutes, is that normal?
<snip logs details lots of connections from 127.0.0.1>
Don't worry Rodrigo, these "hits" are merely your RaQ monitoring its
services to see if they are still up and listening.
"127.0.0.1" refers to localhost, the host itself, in all TCP/IP
implementations ( as far as I'm aware anyway ). Might be worth you reading
a TCP/IP primer or two.
Prompts a thought though, on the local machine surely there's an easier way
to see if a port is listening that to make a TCP/IP connection to it?
--
Nick Drage - Security Architecture - Demon Internet - Thus PLC
As of Wed 21/02/2001 at 10:23
This computer has been up for 11 days, 19 hours, 3 minutes, 33 seconds.