-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sun, Aug 30, 2015 at 09:25:23AM +0100, Joe wrote: > On Sun, 30 Aug 2015 09:47:56 +0200 > <to...@tuxteam.de> wrote: > > > -----BEGIN PGP SIGNED MESSAGE----- > > Hash: SHA1 > > > > On Sat, Aug 29, 2015 at 11:28:10PM +0100, Brian wrote: > > > > > > > > Its only listening on localhost. What's the problem? > > > > You're right, I missed that. > > > > Which is why I suggested nmap. When you've made absolutely sure you've > read the netstat listing properly, you then need to look at the > application configuration and the tcpwrappers files to see what other > restrictions may be applied to connections, and then check the > iptables rules to see what's there. [snip]
Agreed. I wouldn't dismiss nmap -- on the contrary, it's *the* tool in a security toolbox. Use both. Each has its strengths (netstat tells you which process is behin a port, which is handy too). - -- t -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlXivv0ACgkQBcgs9XrR2kaZjACfd8Ci457e/lVIIrcXCBhQHw3A Q5wAnj2kVo4+s4vgLLtlzoFwElSk7FOR =cO5D -----END PGP SIGNATURE-----
