Re: Nmap/Snort

From: Chris (r-c-e@zorgco.com)
Date: 05/30/02

• Next message: Baris Simsek: "unsubscribe freebsd-security simsek@hitit.bimel.com.tr"
• Previous message: Wijnand: "ipv6 in a jail"
• In reply to: faSty: "Re: Nmap/Snort"
• Next in thread: Krzysztof Zaraska: "Re: Nmap/Snort"
• Reply: Krzysztof Zaraska: "Re: Nmap/Snort"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 30 May 2002 20:10:28 +1000
From: "Chris" <r-c-e@zorgco.com>
To: freebsd-security@freebsd.org

Just as a side note, for people looking to find out about certain ports and their functions,
there is quite a comprehensive tcp/udp port listing at http://www.iana.org/assignments/port-numbers

-------------------------------------------------------------------

On 30/05/2002 at 1:38 AM faSty wrote:

>113 port is identd usually for IRC or some reason.
>
>587 is for sendmail's submission
>
>-trev
>
>On Thu, May 30, 2002 at 02:42:32AM -0500, nathan skains wrote:
>> yep i am scanning my self via root. the port that was up on the first
>scan
>> then i scan again seconds later and it was gone.
>> not really sure. but i am also concern about these ports
>> 113/tcp open auth
>> 587/tcp open submission
>>
>> any way to close them... I am still in the learning process of freebsd
>so i
>> have search google and have not found anything about these ports
>> Thanks
>> Nate
>
>--
>Vail's Second Axiom:
> The amount of work to be done increases in proportion to the
>amount of work already completed.
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-security" in the body of the message

Chris
Zorg Enterprises

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Next message: Baris Simsek: "unsubscribe freebsd-security simsek@hitit.bimel.com.tr"
• Previous message: Wijnand: "ipv6 in a jail"
• In reply to: faSty: "Re: Nmap/Snort"
• Next in thread: Krzysztof Zaraska: "Re: Nmap/Snort"
• Reply: Krzysztof Zaraska: "Re: Nmap/Snort"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages re: Nmap/Snort ... yep i am scanning my self via root. ... 113/tcp open auth ... have search google and have not found anything about these ports ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: Nmap/Snort ... -P' is a good tool for determining what's listening on what ports and what ... >> 113/tcp open auth ... >> 587/tcp open submission ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: Connections to ports > 1024 ... Subject: Connections to ports> 1024 ... > DNS server, like BIND?) ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: Connection attempts (& active ids) ... > Well, by listening on more ports, you're just making yourself a more ... icmp echo is blocked (ipfw deny) ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: 31337 ... >> Just to add some extra info I'd like to say that I've seen nmap reporting ... >> such open ports a lot of times while doing port scans on my machines and ... > don't think you should be seeing any false positives. ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint