RE:  I NEED HELP!!

From: Ivan Hernandez Puga (ivan.hernandez@globalsis.com.ar)
Date: 11/30/01


Subject: RE:  I NEED HELP!!
Date: Fri, 30 Nov 2001 11:04:08 -0300
Message-ID: <243C47087E9A9E4A86A2650B4E454EC19856@globalsis1.globalsis.com.ar>
From: "Ivan Hernandez Puga" <ivan.hernandez@globalsis.com.ar>
To: "R. Toma" <rtoma@yahoo.com.ar>, <security-basics@securityfocus.com>

do this:
# lsof |grep -i TCP
so you find what program uses what port.
If you have debian and dont have lsof do this: # apt-get install lsof
luck :)
Ivan Hernandez

-----Original Message-----
From: R. Toma [mailto:rtoma@yahoo.com.ar]
Sent: Wednesday, November 28, 2001 6:16 PM
To: security-basics@securityfocus.com
Subject:  I NEED HELP!!
Importance: High

I scanned my homeserver for open ports and I found that I have the
ports:

12345 NetBus
20034 NetBus Pro
31337 BackOriffice

open. Now, are these the famous trojans? I have linux, aren't they
programmed for a MS platform? How can I close these ports????

PLEASE!!!

_________________________________________________________

Do You Yahoo!?

Get your free @yahoo.com address at http://mail.yahoo.com