[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] Hacker activity?

Subject: RE: [cobalt-security] Hacker activity?
From: "Drage, Nicholas" <nickd@xxxxxxxxx>
Date: Wed, 21 Feb 2001 10:18:39 -0000
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> -----Original Message-----
> From: Rodrigo Velasco [mailto:rvelasco@xxxxxxx]
> Sent: 20 February 2001 14:49

> This is a piece of my last downloaded log-file from my Raq4i, I'm just
> starting to create web sites on it an I've already installed 
> all the patches Cobalt released.
> I am concerned about the activity logfile display every 15 
> minutes, is that normal?

<snip logs details lots of connections from 127.0.0.1>

Don't worry Rodrigo, these "hits" are merely your RaQ monitoring its
services to see if they are still up and listening.

"127.0.0.1" refers to localhost, the host itself, in all TCP/IP
implementations ( as far as I'm aware anyway ).  Might be worth you reading
a TCP/IP primer or two.

Prompts a thought though, on the local machine surely there's an easier way
to see if a port is listening that to make a TCP/IP connection to it?

-- 
Nick Drage - Security Architecture - Demon Internet - Thus PLC
As of Wed 21/02/2001 at 10:23 
This computer has been up for 11 days, 19 hours, 3 minutes, 33 seconds.

Follow-Ups:
- RE: [cobalt-security] Hacker activity?
  - From: Alex Lee
- RE: [cobalt-security] Hacker activity?
  - From: Admin
- Re: [cobalt-security] Hacker activity?
  - From: John Sim

Prev by Date: RE: [cobalt-security] SSH
Next by Date: RE: [cobalt-security] [RaQ3i] Firewall Software Now Tripwire
Previous by thread: [cobalt-security] Hacker activity?
Next by thread: RE: [cobalt-security] Hacker activity?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index