Re: Port 32768/tcp

From: Andreas Hasenack (andreas@netbank.com.br)
Date: 08/29/01 

Date: Wed, 29 Aug 2001 00:01:09 -0300
From: Andreas Hasenack <andreas@netbank.com.br>
To: focus-linux@securityfocus.com
Subject: Re: Port 32768/tcp
Message-ID: <20010829000109.C987@netbank.com.br>

Em Wed, Aug 29, 2001 at 12:43:38AM +0200, gminick escreveu:
> > tcp 0 0
> > 0.0.0.0:32768 0.0.0.0:* LISTEN
> > 475/rpc.statd
>
> It looks strange.
> Take a look at chkrootkit (www.chkrootkit.org).

Telnet to it and see what shows up... :)
Also check /proc/$PID/fd and /proc/$PID itself

Relevant Pages

  • Re: Port Probing
    ... according to the port scanners, ... > But when I telnet on port 25, I don't get a reply from my mailserver. ... now that is strange, very strange. ... since a RST package should be sent, you could use tcpdump (yes it's ...
    (comp.security.firewalls)
  • Re: Port Probing
    ... according to the port scanners, ... > But when I telnet on port 25, I don't get a reply from my mailserver. ... now that is strange, very strange. ... since a RST package should be sent, you could use tcpdump (yes it's ...
    (comp.security.firewalls)
  • Re: Port 32768/tcp
    ... Subject: Port 32768/tcp ... David López Moreno wrote: ... It looks strange. ... Take a look at chkrootkit. ...
    (Focus-Linux)
  • Re: Telnet port 25
    ... Subject: Telnet port 25 ... is the sole responsibility of the customer and depends on the customer's ... Configuring sendmail 8.11.0 for Anti-Relay ...
    (AIX-L)
  • Re: Linux Forums unreachable.
    ... DSL router, do you? ... web site that does not match linuxforums.org. ... interesting to see if the problem is specific to port 80. ... ray@RaysComputer:~$ telnet www.linuxforums.org 21 ...
    (Ubuntu)