Penetration Testing mailing list archives

Re: [PEN-TEST] ports

From: Andrew Brown <atatat () ATATDOT NET>
Date: Sat, 9 Sep 2000 16:16:50 -0400

I'm wondering if anyone knows of any URLs which list everything that would
be on certain ports.  I know of a large /etc/services file on the web at
this URL:
http://people.redhat.com/alikins/services.txt
but it is not complete.  Specifically, I am trying to find out what runs
on ports 6010 and 6011 on linux boxes.


that seems to be a rough copy of the regular iana ports (or services)
list.  good, but by no means complete.

x11               6010/tcp              # x window system
x11               6010/udp              # x window system
x11               6011/tcp              # x window system
x11               6011/udp              # x window system

i found the above info at  http://www.graffiti.com/services
hope this helps,


that one's mine :), and if you find things that aren't listed in it,
please drop me a line.  i'm trying to make it as comprehensive as
possible, although keep in mind that the more that goes into it...the
less useful it might actually be to you.  as was discussed recently on
the nmap-hackers lists (nmap-hackers () insecure org), the knowledge that
(a) a port is open and (b) what it's supposed to be used for do *not*
mean that's actually what it is.

i can run just about anything on just about any port i feel like.  the
oonly reason for using standard ports for standard services is so that
people that you don't know (but with whom you presumably want to share
information) can find your servers.  that, and brain dead software
that won't accept anything but the defaults.

http is a great example; people will run a web server on just about
any port.  that's part of the attraction of urls.  you can specify the
port in the url itself.  just wait for srv dns records to come into
use.

--
|-----< "CODE WARRIOR" >-----|
codewarrior () daemon org             * "ah!  i see you have the internet
twofsonet () graffiti com (Andrew Brown)                that goes *ping*!"
andrew () crossbar com       * "information is power -- share the wealth."

Current thread:

[PEN-TEST] ports Dale, C (Sep 06)
- Re: [PEN-TEST] ports Erik Tayler (Sep 06)
- Re: [PEN-TEST] ports Work, Clinton (Sep 06)
- Re: [PEN-TEST] ports Security (Sep 06)
- Re: [PEN-TEST] ports j a s o n (Sep 07)
  - Re: [PEN-TEST] ports Frasnelli, Dan (Sep 07)
    - Re: [PEN-TEST] ports Frasnelli, Dan (Sep 08)
  - Re: [PEN-TEST] ports Andrew Brown (Sep 09)
    - Re: [PEN-TEST] ports Fred Mobach (Sep 11)
- <Possible follow-ups>
- Re: [PEN-TEST] ports Meritt, Jim (Sep 06)
  - Re: [PEN-TEST] ports Teicher, Mark (Sep 06)
- Re: [PEN-TEST] ports Dunker, Noah (Sep 06)
  - Re: [PEN-TEST] ports martin (Sep 07)
- Re: [PEN-TEST] ports Mark Thomsen (Sep 07)
- Re: [PEN-TEST] ports ATTN! Chris's new address is chris_devoney () ziffdavis com (Sep 07)
- Re: [PEN-TEST] ports Fernando Cardoso (Sep 07)