[Techtalk] port numbers

[Kathryn Hogg]

It might be interesting to run lsof -i :$port (as root) to see if there
are any processes running that have said port opened.

This happened to me once via a phpBB exploit.  It created a perl program
in /tmp/ that opened up a socket.  In my case i noticed that the CPU was
bogged down.  Please note, no root access was needed or granted for this. 
The exploit was running completely in userspace.

-- 
Kathryn
http://womensfooty.com