[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: strange port



Ben-Nes Michael wrote:
> 
> Hi All
> 
> I done nmap on my server and got few strange output:
> 111/tcp    open        sunrpc
> 113/tcp    open        auth
> 935/tcp    open        unknown
> 1024/tcp   open        kdm		
> 
> The auth is disabled in the inetd.conf file and the daemon was restarted
> but the port still active.
> 
> what is the 111 , 935, 1024 ?

111 is the portmap service, needed for RPC based services
(/etc/rc.d/init.d/portmap)
1024 I'm *guessing* is the KDE ORB (Object Request Broker) port.
And on RH6.2 identd is a standalone daemon that runs from the SysV init
files (/etc/rc.d/init.d/identd) and not from indetd.

I have no idea what 935 is used for. Use netstat -nlp to find out...

Hint of the day: "grep <port number> /etc/services" is your friend. Use
it! ;-)

-- 
Gilad Ben-Yossef <gby@kagoor.com>
http://www.kagoor.com
"Nobody knows the Tribbles I've seen..."

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il