[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] netstat
- Subject: [cobalt-security] netstat
- From: "Sean Chester" <seanc@xxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 23 Feb 2001 11:57:33 -0000
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
could someone on a raq3 and has portsentry install and has NOT been r00ted
please do:
netstat -a
and tell me if the have any entrys that look like the following..
tcp 0 0 *:54320 *:* LISTEN
tcp 0 0 *:49724 *:* LISTEN
tcp 0 0 *:40421 *:* LISTEN
tcp 0 0 *:32774 *:* LISTEN
tcp 0 0 *:32773 *:* LISTEN
tcp 0 0 *:32772 *:* LISTEN
tcp 0 0 *:32771 *:* LISTEN
tcp 0 0 *:31337 *:* LISTEN
tcp 0 0 *:20034 *:* LISTEN
tcp 0 0 *:12346 *:* LISTEN
reason..
i dont know if a hacker has opened these ports or portsentry is using them.
thanks