Subject: Re: Weird Port Open
christopher.murtagh@wcg.mcgill.ca
Date: Wed Apr 25 2001 - 09:31:35 MDT
On Wed, 25 Apr 2001, Patrick J. Larkin wrote:
>> Did you try simply telnet'ing to the port to see what you get?
>
>I have telnet turned off.
On Wed, 25 Apr 2001, Patrick J. Larkin wrote:
>> Did you try simply telnet'ing to the port to see what you get?
>
>I have telnet turned off.
When you 'turn telnet off' you simply don't have a daemon listening on
port 23. You can still telnet to other ports however. Example: try the
following:
Type 'telnet hostname.domain.com 80' to telnet to port 80 of that
machine. If there is a web server, it will wait for another
statement. Type the following 'HEAD / HTTP/1.0' (no quotes). Here is an
example of my server:
[chris@saraswati chris]$ telnet www.mcgill.ca 80
Trying 132.216.67.18...
Connected to cochise.wcg.mcgill.ca.
Escape character is '^]'.
HEAD / HTTP/1.0
HTTP/1.1 200 OK
Date: Wed, 25 Apr 2001 15:24:13 GMT
Server: Apache/1.3.14 (YellowDog Linux (PPC)) PHP/4.0.3pl1
mod_perl/1.24_01
Connection: close
Content-Type: text/html
Connection closed by foreign host.
>> Or:
>>
>> netstat -p --tcp
>
>This gives me a bunch of active web connections.
This gives you all tcp connections and if you are superuser when you do
this, the -p gives you the process ID that is active/listening for each
connection. You might want to try the following:
netstat -p | grep 1024
to make the list shorter.
Cheers,
Chris
--Christopher Murtagh Webmaster / Web Communications Group McGill University Montreal, Quebec Canada
This archive was generated by hypermail 2a24 : Wed Apr 25 2001 - 09:33:58 MDT