Re: use ipchains to block all ports > 60,000
From: Tim Haynes (usenet-20030827_at_stirfried.vegetable.org.uk)
Date: Wed, 27 Aug 2003 22:55:54 +0100
Neil Sandow <firstname.lastname@example.org> writes:
> On Thu, 28 Aug 2003, Chris McDonald wrote:
>> In comp.os.linux.security you write:
>> >Hmmm very different.
>> >`ls /proc/[0-9]* | wc -l' returns 377 (every time)
>> >`ps auxww | wc -l' returns 28 (every time)
>> Try: ls -d /proc/[0-9]* | wc -l'
> Thanks, now I'm getting 27's and 28's should they always match? -ns
Yes they should, to within 1 (depending on race-conditions whether the ls
and wc processes are around long enough to count themselves, but more often
than not they're equal).
This is a favourable sign, assuming that you don't have an LKM loaded
masking the contents of /proc.
-- I never knew that the |email@example.com light of ages breaks the way before us |http://spodzone.org.uk/