Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Random unprivileged TCP ports below 5000 kind-of open for a fraction of a second

From: alfaentomega <alfaentomega () yahoo com>
Date: Fri, 27 Dec 2002 00:44:19 -0800 (PST)

--- Charles.Fasching () milestonesystems com wrote:

What OS are you scanning?
Is it running RPC services or DCE services
(Microsoft's RPC - such as an exchange server)?
That can lead to the
type of behavior that you are seeing.


No, it's a Debian GNU/Linux box with identd being the only service
available (actually, it's nullidentd).

But I already know what is the problem.
See Fyodor's answer: <20021224191816.GA10153 () core lnxnet net>

Thanks.
-Alfaentomega.


__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com
Previous By Date Next
Previous By Thread Next

Current thread: