[P1] Security Problem

Mike Beede beede at visi.com
Mon Jun 23 15:49:56 PDT 2003


On Monday, Jun 23, 2003, at 15:52 US/Central, Ben Guansing wrote:

> What should one do if TCP sockets state "LISTEN" is indicated?
>
> --ben
>
> On Thursday, June 19, 2003, at 12:02 AM, iBook List wrote:
>
>> Well, a hole in your firewall is only half the problem--is there
>> something
>> listening at the hole?  You can use "netstat" to determine what ports
>> are
>> being listened to.  Try just plain "netstat" and look for TCP sockets
>> in state
>> "LISTEN."

That indicates a service waiting to accept connections.  If you
have a hole in your firewall for that port, then others can
connect to it.  The discussion was about how to tell if a hole
in your firewall made your system vulnerable.  If there's nothing
listening on that port, the answer is trivially "no."

Regards,

	Mike



More information about the iBook mailing list