[vpsFree.cz: community-list] Security port 1001
Petr Krcmar
petr.krcmar at vpsfree.cz
Sat Feb 15 20:18:12 CET 2014
Dne 15.2.2014 20:01, Timotej Šiškovič napsal(a):
> Caff,
>
> Akurat som sa zacal snazit riesit security trosku serioznejsie co ma ale
> prekvapuje ze mi nmap hlasi otvoreny port 1001 na oboch VPSkach obvzlast
> vzhladdom na iptables rules.
>
> Toto je iptables -L output:
>
> Chain INPUT (policy ACCEPT)
> target prot opt source destination
> fail2ban-ssh tcp -- anywhere anywhere
> multiport dports ssh
> ACCEPT tcp -- anywhere anywhere tcp
> dpt:ssh
> ACCEPT tcp -- anywhere anywhere tcp
> dpt:http
> ACCEPT tcp -- anywhere anywhere tcp
> dpt:https
> ACCEPT tcp -- anywhere anywhere tcp
> dpt:smtp
> DROP all -- anywhere anywhere
>
> Chain FORWARD (policy ACCEPT)
> target prot opt source destination
>
> Chain OUTPUT (policy ACCEPT)
> target prot opt source destination
>
> Chain fail2ban-ssh (1 references)
> target prot opt source destination
> DROP all -- 61.174.51.208 anywhere
> RETURN all -- anywhere anywhere
>
>
> A toto mi hlasi nmap z lokalneho PC:
>
> Starting Nmap 6.00 ( http://nmap.org ) at 2014-02-15 20:00 CET
> Nmap scan report for sifro.co <http://sifro.co> (185.8.164.47)
> Host is up (0.058s latency).
> Not shown: 995 filtered ports
> PORT STATE SERVICE
> 22/tcp open ssh
> 25/tcp open smtp
> 80/tcp open http
> 443/tcp open https
> 1001/tcp open unknown
>
> Nmap done: 1 IP address (1 host up) scanned in 23.22 seconds
>
>
> Vie mi niekto povedat WTF? resp. co robim zle?
>
> Vdaka
>
>
> _______________________________________________
> Community-list mailing list
> Community-list at lists.vpsfree.cz
> http://lists.vpsfree.cz/listinfo/community-list
>
V první řadě se podívej, jaký proces na tom portu poslouchá:
# netstat -tulpn
--
Petr Krčmář
vpsFree.cz
More information about the Community-list
mailing list