[Security] Nearly had heart attack ! :-O
lists at xdna.net
Thu Mar 15 04:33:35 GMT 2007
Conrad Knauer wrote:
In list.ubuntu.sounder you write:
>On 3/14/07, Vincent Trouilliez <vincent.trouilliez at modulonet.fr> wrote:
>> Cameron Hutchison <lists at xdna.net> wrote:
>> > If you drop to the command line now and run:
>> > $ sudo netstat -antup | grep ':\*'
>> > you will see all the ports that are listening for connections and the
>> > process for each port.
>> OH, that's confusing... this command gives me results that are
>> completely differents than what the Network Tools gave me !
>The results of that command also has things that aren't exposed to the
>ouside world. Its not very newbie-friendly IMHO. Stick with the GUI
>program I mentioned since it definitely shows if someone from the
>outside can see you.
Actually, it doesn't definately show you. It seems the port scan stops
short of the full port range. I did the port scan, and then upon running
the above shell command, I noticed an extra port that was open that the
port scan did not show.
tcp 0 0 0.0.0.0:24800 0.0.0.0:* LISTEN 16562/synergys
That line above is an example of what netstat revealed that the port
scan did not.
If you add a "| grep -v 127.0.0.1" to the end of the above command it
will remove all the sockets that are listening only on localhost (i.e.
internal to the box and not seen by the outside world)
More information about the sounder