Re: Hmm....901
From: Florin Andrei (florin_at_sgi.com)
Date: 06/05/03
- Previous message: Nick Jacobsen: "Re: Dameware Malcode? Is anyone aware of it?"
- In reply to: David Kennedy CISSP: "Hmm....901"
- Next in thread: Jason Falciola: "Re: Hmm....901"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: incidents@securityfocus.com Date: 05 Jun 2003 11:21:33 -0700
For a quick answer to such questions, i usually use nmap's ports
database. On my OS, it's in /usr/share/nmap/nmap-services
It's not extraordinarily comprehensive, but it sure is a lot larger than
the typical /etc/services
On Mon, 2003-06-02 at 00:35, David Kennedy CISSP wrote:
> I hate a mystery. Saw several 901's in my reports.
>
> http://isc.incidents.org/port_details.html?port=901&repax=1&tarax=2&srcax=2&
> percent=N&days=70&Redraw=Submit+Query
>
> Date Sources Targets Records
> 2003-06-02 97 13168 31506
> 2003-06-01 482 51263 77878
> 2003-05-31 149 41068 43239
> 2003-05-30 135 36259 71512
> 2003-05-29 31 32336 32403
> 2003-05-28 22 61853 102004
> 2003-05-27 39 317 405
> 2003-05-26 67 230 501
> 2003-05-25 62 361 665
> 2003-05-24 39 152 541
>
>
> 2003-04-19 11 35419 57290
-- Florin Andrei "You can't encrypt your face." - Phil Zimmermann ---------------------------------------------------------------------------- ----------------------------------------------------------------------------
- Previous message: Nick Jacobsen: "Re: Dameware Malcode? Is anyone aware of it?"
- In reply to: David Kennedy CISSP: "Hmm....901"
- Next in thread: Jason Falciola: "Re: Hmm....901"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
