[Security] Nearly had heart attack ! :-O
lists at xdna.net
Thu Mar 15 22:24:29 GMT 2007
Conrad Knauer wrote:
>On 3/15/07, Vincent Trouilliez <vincent.trouilliez at modulonet.fr> wrote:
>>Cameron Hutchison who wrote:
>> >If you add a "| grep -v 127.0.0.1" to the end of the above command it
>> will remove all the sockets that are listening only on localhost (i.e.
>> internal to the box and not seen by the outside world)
>> Ah, so if we do it manually from the output I pasted above, that means we can
>> remove 4 of them from the list.. that's still a lot of stuff remaining, no ?
>Indeed; also AFAIK we only have to worry about those entries that have
>"LISTEN" mentioned on them.
If you only look at the LISTEN lines, you'll miss the UDP ports. Thats
why I wrote that you should grep for ':\*' since that will show both the
TCP and UDP listening ports.
More information about the sounder