[lug] outgoing port 220 exploit?
Jordan Crouse
jordan at cosmicpenguin.net
Tue Jan 20 12:56:23 MST 2004
On Tue, 20 Jan 2004 12:47:45 -0700
Kevin Fenzi <kevin at scrye.com> wrote:
> The packet comes in to port 6129 on your machines, and they have setup
> their incoming packet so the reply goes back to port 220 on the
> sending machine (in this case it should be a connection refused,
> unless you are running DameWare).
But incoming packets to 6129 will go to the bit bucket if there isn't
anything running that will listen to them.
He already said that nothing unusual is running, but it wouldn't hurt to
try a nmap and see if anything pops up in that port range.
Jordan
--
http://www.cosmicpenguin.net
** No penguins were harmed in the making of this message
More information about the LUG
mailing list