It's hard to say. You shouldn't be able to see some of those ports at all.
Either they have been hacked or they are a script kiddie with no sense at
all (which characterizes most of them anyway.
Find out who owns the IP.
> -----Original Message-----
> From: eric clover [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, April 17, 2001 4:06 PM
> To: red hat list
> Subject: scanning the scanner
>
>
> i just got scanned. i in turn scanned them. this is what i got back.
> are they compromised? (look at the last one)
>
> eric
>
>
> Starting nmap V. 2.53 by [EMAIL PROTECTED] (
> www.insecure.org/nmap/ )
> Interesting ports on (61.33.33.104):
> (The 1502 ports scanned but not shown below are in state: closed)
> Port State Service
> 1/tcp open tcpmux
> 21/tcp open ftp
> 22/tcp open ssh
> 23/tcp open telnet
> 25/tcp open smtp
> 79/tcp open finger
> 80/tcp open http
> 86/tcp open mfcobol
> 98/tcp open linuxconf
> 109/tcp open pop-2
> 110/tcp open pop-3
> 113/tcp open auth
> 143/tcp open imap2
> 465/tcp open smtps
> 513/tcp open login
> 514/tcp open shell
> 515/tcp open printer
> 1024/tcp open kdm
> 2001/tcp open dc
> 3306/tcp open mysql
> 31337/tcp open Elite
>
>
>
>
> _______________________________________________
> Redhat-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/redhat-list
>
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
