[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] netstat

Subject: [cobalt-security] netstat
From: "Sean Chester" <seanc@xxxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 23 Feb 2001 11:57:33 -0000
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

could someone on a raq3 and has portsentry install and has NOT been r00ted
please do:
netstat -a
and tell me if the have any entrys that look like the following..

tcp        0      0 *:54320                 *:*                     LISTEN
tcp        0      0 *:49724                 *:*                     LISTEN
tcp        0      0 *:40421                 *:*                     LISTEN
tcp        0      0 *:32774                 *:*                     LISTEN
tcp        0      0 *:32773                 *:*                     LISTEN
tcp        0      0 *:32772                 *:*                     LISTEN
tcp        0      0 *:32771                 *:*                     LISTEN
tcp        0      0 *:31337                 *:*                     LISTEN
tcp        0      0 *:20034                 *:*                     LISTEN
tcp        0      0 *:12346                 *:*                     LISTEN

reason..

i dont know if a hacker has opened these ports or portsentry is using them.

thanks

References:
- RE: [cobalt-security] SSH
  - From: Brandon Wheaton

Prev by Date: RE: [cobalt-security] FW: Chili!Soft ASP Multiple Vulnerabilities FIX
Next by Date: RE: [cobalt-security] netstat
Previous by thread: RE: [cobalt-security] SSH
Next by thread: [cobalt-security] SSH

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index