make sure no firewalls are running on either machine. The default firewall on a redhat 7.2 box will cause the local ports being blocked by the firewall as coming back open on the remote box. --rat On Mon, 2002-03-18 at 01:59, Jih=E8ne Krich=E8ne wrote: >=20 > Hi > I have also the same problem, but with the ports 613, 612, 610. Each time= , > nmap shows me a different number. > I don't know if nmap is really efficient. > Because when I run it throw another PC in order to scan my own machine, I > have another output. >=20 > Itried=20 > lsof -i :613 | grep LISTEN > but I didn't have any output. >=20 > If any one can help, I'll be greatfull >=20 >=20 > Best regards > --- "Robert A. Thompson" <ucs_rat@shsu.edu> a =E9crit : >=20 > > There are probably rpc.mountd, rpc.statd, rpc.quotad, and etc from the > > nfs/portmapper packages. Try running an lsof on the machine that is > > listening to see what has the port open... Example: > >=20 > > lsof -i :862 | grep LISTEN=20 > >=20 > > will show the process that has a port open and listening on your > > machine. > >=20 > > --robert > >=20 > >=20 > > On Fri, 2002-03-15 at 07:58, Tiago Fioreze wrote: > > >=20 > > >=20 > > > Hi !!! > > >=20 > > > I'am observing that my web server has some 'strange' ports. Th= e > > program=20 > > > nmap showed the following : > > >=20 > > > Port State Service > > > 22/tcp open ssh =20 > > > 25/tcp open smtp =20 > > > 80/tcp open http =20 > > > 111/tcp open sunrpc =20 > > > 443/tcp open https =20 > > > --> 862/tcp open unknown =20 > > > --> 956/tcp open unknown =20 > > > --> 957/tcp open unknown =20 > > > 2401/tcp open cvspserver =20 > > > 3306/tcp open mysql =20 > > > 8080/tcp open http-proxy =20 > > > 32770/tcp open sometimes-rpc3 =20 > > >=20 > > > I consulted in the web about these three strange ports, and t= he > > answer=20 > > > that I get was 'Unassigned' > > >=20 > > > I would like to know what to make in a case of these, when > > strange > > > ports appear in the machines of my network ? > > >=20 > > > Thanks a lot ! > > >=20 > > > Tiago Fioreze > > > =20 > > > ---------------------------------------------------------------------= --- > > > To unsubscribe email security-discuss-request@linuxsecurity.com > > > with "unsubscribe" in the subject of the message. > > >=20 > >=20 > > -----------------------------------------------------------------------= - > > To unsubscribe email security-discuss-request@linuxsecurity.com > > with "unsubscribe" in the subject of the message. > > =20 >=20 > ___________________________________________________________ > Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en fran=E7ais ! > Yahoo! Mail : http://fr.mail.yahoo.com > ------------------------------------------------------------------------ > To unsubscribe email security-discuss-request@linuxsecurity.com > with "unsubscribe" in the subject of the message. >=20 ------------------------------------------------------------------------ To unsubscribe email security-discuss-request@linuxsecurity.com with "unsubscribe" in the subject of the message.
