RE: Random unprivileged TCP ports below 5000 kind-of open for a fraction of a second

• Previous message: Tomo: "NIMDA - ceased ? -"
• Maybe in reply to: alfaentomega: "Random unprivileged TCP ports below 5000 kind-of open for a fraction of a second"
• Next in thread: H C: "RE: Random unprivileged TCP ports below 5000 kind-of open for a fraction of a second"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 27 Dec 2002 00:44:19 -0800 (PST)
From: alfaentomega <alfaentomega@yahoo.com>
To: Charles.Fasching@milestonesystems.com

--- Charles.Fasching@milestonesystems.com wrote:
> What OS are you scanning?
> Is it running RPC services or DCE services
> (Microsoft's RPC - such as an exchange server)?
> That can lead to the
> type of behavior that you are seeing.

No, it's a Debian GNU/Linux box with identd being the only service
available (actually, it's nullidentd).

But I already know what is the problem.
See Fyodor's answer: <20021224191816.GA10153@core.lnxnet.net>

Thanks.
-Alfaentomega.

__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com

• Next message: alfaentomega: "Re: Random unprivileged TCP ports below 5000 kind-of open for a fraction of a second"
• Previous message: Tomo: "NIMDA - ceased ? -"
• Maybe in reply to: alfaentomega: "Random unprivileged TCP ports below 5000 kind-of open for a fraction of a second"
• Next in thread: H C: "RE: Random unprivileged TCP ports below 5000 kind-of open for a fraction of a second"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]