[Techtalk] port numbers
Kathryn Hogg
kjh at flyballdogs.com
Mon Aug 21 23:41:43 UTC 2006
It might be interesting to run lsof -i :$port (as root) to see if there
are any processes running that have said port opened.
This happened to me once via a phpBB exploit. It created a perl program
in /tmp/ that opened up a socket. In my case i noticed that the CPU was
bogged down. Please note, no root access was needed or granted for this.
The exploit was running completely in userspace.
--
Kathryn
http://womensfooty.com
More information about the Techtalk
mailing list