ports 755 and 757 in netstat ?
This is a discussion on ports 755 and 757 in netstat ? within the Slackware Linux Support forums, part of the Unix Operating Systems category; --> use fuser. ex fuser -n udp 757 that will give you the pid....
| |||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-19-2008, 12:17 PM
| |||
| |||
 Re: ports 755 and 757 in netstat ? Mikhail Zotov wrote: > Greg and Chris, thank you very much. > > These ports appeared to be used by inetd. That is suspicious, 755 & 757 are unused according to my copy of the official list & AFAIK inetd uses no ports itself. Trojan backdoor? rootkit? -- Merci........Yvan I did not want to repeat other people's mistakes. So I made new mistakes of my own. Boy did I invent some good ones!      |
|
02-19-2008, 12:18 PM
| ||||
| ||||
| Re: ports 755 and 757 in netstat ? bq434@freenet.carleton.ca (Yvan Loranger) wrote in message news:<cas0d3$lop$1@freenet9.carleton.ca>... > Mikhail Zotov wrote: > > Greg and Chris, thank you very much. > > > > These ports appeared to be used by inetd. > > That is suspicious, 755 & 757 are unused according to my copy of the > official list & AFAIK inetd uses no ports itself. Trojan backdoor? rootkit? Thanks for the reply, Yvan. A rootkit was the first thing I thought about but chkrootkit found nothing. Surely, this is not a 100% warranty but... I still don't know why was inetd listening to these ports but it doesn't listen anymore after I have upgraded the kernel. All this took place at a Slackware 9.0 PC. A Slackware 9.1 PC with the same services opened at inetd.conf doesn't have such a problem. Regards, Mikhail |
Linear Mode
