Re: Compromised FBSD/Apache
From: Adam Sampson (azz@gnu.org)
Date: 11/25/02
- Previous message: gminick: "Re: increased attacks on port 2599"
- In reply to: Thomas C. Meggs: "Re: Compromised FBSD/Apache"
- Next in thread: Charles Blackburn: "Re: Compromised FBSD/Apache"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: incidents@securityfocus.com From: Adam Sampson <azz@gnu.org> Date: 25 Nov 2002 18:22:30 +0000
"Thomas C. Meggs" <tom@plik.net> writes:
> Out of curiosity what is the Linux and Solaris equivalents for doing
> this?
With Linux net-tools, netstat has a -p option for this. "netstat
-nltp" will list listening TCP sockets and the processes that are
using them:
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 230/httpd
I believe lsof can do the same sort of thing on both Linux and
Solaris (and a number of other systems).
-- Adam Sampson <azz@gnu.org> <URL:http://azz.us-lot.org/> ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
- Next message: Boyan Krosnov: "RE: Compromised FBSD/Apache"
- Previous message: gminick: "Re: increased attacks on port 2599"
- In reply to: Thomas C. Meggs: "Re: Compromised FBSD/Apache"
- Next in thread: Charles Blackburn: "Re: Compromised FBSD/Apache"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
