-----BEGIN PGP SIGNED MESSAGE-----
On Thu, 23 Mar 2000, Sergio Brandano wrote:
>
> > My thought of the day: why nmap localhost, rather than netstat -a
> > or -an ?
>
> Because it is actually "netstat -anp" that will (also) list the
> services. The reason for using nmap is that it is a popular tool
> for ... mapping other's people machines. As such, you may want to
> know about its existence and defend yourself against it. There are
> certainly other methods, but that's the one I happen to have
> mentioned. But, yes I will add the netstat thing, also because it is
> the way for retrieving services and deleting them (as from point 8).
And actually, i've found it very useful to run 'nmap -sT -sU -
sR -O -I -p 1-65535' then use lsof to identify exactly what programs are
using what port. Which brings me to a question:
At work, i've scanned most of our major Linux servers with the
above nmap command and found something open on port 800. nmap says it's
called mdbs_daemon, but i can't find it being used anywhere in lsof
or listed in /etc/services. Does anyone know what this is?
Nathan Paul Simons
http://www.nmt.edu/~npsimons/
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBONovYFegz5xsVo19AQGCJAQAoY9/Ixd77QwoBlbAd+IGYSaRHzi6+ask
3euHB9qtQn9Za77l1VFqVuu/zZGyFVOU6Qiw6tJru5ShuASN+D4D+wXBheFUY0SX
QJ+UQHaf78t7saLoYYnqjsyqXRkE9aZ42Yq+0puM488OI6Urg7RD8ZdjBRzZ6nkM
kfpE17FpsEQ=
=ozJh
-----END PGP SIGNATURE-----
