Penetration Testing mailing list archives

Re: Port 4662 exploitation

From: ArcSighter Elite <arcsighter () gmail com>
Date: Tue, 16 Dec 2008 16:33:12 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Christopher wrote:

One can only hope it is some kind of nepenthes-like honeypot or something.  Wow.

My question is, out of all the ports found open on this host, why do
you single out 4662?



IMHO, it couldn't be tell if is a honey without proper tests, such as
traffic analysis or monitoring, nothing he could achieve by now, I
think. In fact, from the beggining, is he doesn't scans well you have no
clue what you have in there. That's already said.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJSB6XH+KgkfcIQ8cRAu7vAJsErzRDPpgBbGCvRlJVbHqFf/KiSgCeLHWz
XXzd5B5WpTtvMOPSt2N9+2w=
=4ugs
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------

Current thread:

Re: Port 4662 exploitation, (continued)
- - - Re: Port 4662 exploitation ArcSighter Elite (Dec 15)
    - Message not available
    - Message not available
    - Re: Port 4662 exploitation ArcSighter Elite (Dec 15)
    - Re: Port 4662 exploitation James Bensley (Dec 15)
  - RE: Port 4662 exploitation Erin Carroll (Dec 12)
- FW: Port 4662 exploitation lgpmsec (Dec 15)
  - RE: Port 4662 exploitation Shenk, Jerry A (Dec 15)
  - Re: FW: Port 4662 exploitation ArcSighter Elite (Dec 15)
  - Re: FW: Port 4662 exploitation Todd Haverkos (Dec 15)
  - Re: FW: Port 4662 exploitation Dante Lanznaster (Dec 15)
    - Re: Port 4662 exploitation Christopher (Dec 16)
    - Re: Port 4662 exploitation ArcSighter Elite (Dec 18)