[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] Help with open ports
- Subject: RE: [cobalt-users] Help with open ports
- From: "Rick" <rick@xxxxxxxxxxxx>
- Date: Sun Jul 7 02:14:13 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
Hi,
Attached are the results.
[root chkrootkit-pre-0.36]# netstat -anp
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
PID/Program name
tcp 0 0 202.172.230.232:22 218.186.115.41:3212
ESTABLISHED 28251/sshd
tcp 0 240 202.172.230.232:22 218.186.115.41:3195
ESTABLISHED 12338/sshd
tcp 0 0 202.172.230.232:14572 218.186.115.41:3062
ESTABLISHED 5644/psybnc
tcp 0 0 202.172.230.232:53 0.0.0.0:* LISTEN
12656/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN
12656/named
tcp 0 0 202.172.230.232:3797 202.56.159.206:6667
ESTABLISHED 5644/psybnc
tcp 0 0 0.0.0.0:14572 0.0.0.0:* LISTEN
5644/psybnc
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN
845/tcpserver
tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN
838/tcpserver
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN
691/mysqld
tcp 0 0 0.0.0.0:5102 0.0.0.0:* LISTEN
609/admeng
tcp 0 0 0.0.0.0:5101 0.0.0.0:* LISTEN
605/admdog
tcp 0 0 0.0.0.0:3001 0.0.0.0:* LISTEN
511/caspeng
tcp 0 0 0.0.0.0:5100 0.0.0.0:* LISTEN
564/admd
tcp 0 0 0.0.0.0:3000 0.0.0.0:* LISTEN
506/caspd
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN
409/httpd
tcp 0 0 0.0.0.0:81 0.0.0.0:* LISTEN
369/httpd.admsrv
tcp 0 0 0.0.0.0:444 0.0.0.0:* LISTEN
369/httpd.admsrv
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
359/sshd
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN
325/inetd
udp 0 0 0.0.0.0:1513 0.0.0.0:*
12656/named
udp 0 0 202.172.230.232:53 0.0.0.0:*
12656/named
udp 0 0 127.0.0.1:53 0.0.0.0:*
12656/named
raw 0 0 0.0.0.0:1 0.0.0.0:*
7 -
raw 0 0 0.0.0.0:6 0.0.0.0:*
7 -
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags Type State I-Node PID/Program name
Path
unix 0 [ ] DGRAM 25002777 6824/syslogd
/dev/log
unix 0 [ ACC ] STREAM LISTENING 10762925 12656/named
/var/run/ndc
unix 0 [ ACC ] STREAM LISTENING 537 691/mysqld
/var/lib/mysql/mysql.sock
unix 1 [ W ] STREAM CONNECTED 24750068 28251/sshd
unix 1 [ ] STREAM CONNECTED 24750067 28281/sshd
unix 1 [ W ] STREAM CONNECTED 24723528 12338/sshd
unix 1 [ ] STREAM CONNECTED 24723527 12374/sshd
unix 0 [ ] DGRAM 10762919 12656/named
unix 0 [ ] DGRAM 74 132/klogd
[root chkrootkit-pre-0.36]#
Regards,
Rick
-----Original Message-----
From: cobalt-users-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of E.B. Dreger
Sent: Sunday, July 07, 2002 4:50 PM
To: Cobalt-Users
Subject: Re: [cobalt-users] Help with open ports
R> Date: Sun, 7 Jul 2002 15:00:37 +0800
R> From: Rick
R> a)What are these ports
R> b)What do they do
Type
netstat -anp
as root.
Unless you have a wide terminal (e.g., full-screen PuTTY on a
high-resolution monitor), you may wish to redirect the output to
a file and open it in an editor. The results are rather wide.
Eddy
--
Brotsman & Dreger, Inc. - EverQuick Internet Division
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 (785) 865-5885 Lawrence and [inter]national
Phone: +1 (316) 794-8922 Wichita
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@xxxxxxxxx>
To: blacklist@xxxxxxxxx
Subject: Please ignore this portion of my mail signature.
These last few lines are a trap for address-harvesting spambots.
Do NOT send mail to <blacklist@xxxxxxxxx>, or you are likely to
be blocked.
_______________________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To Subscribe or Unsubscribe, please go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users