[rescue] OT: open TCP port
Al Potter
rescue at sunhelp.org
Thu Aug 2 11:24:32 CDT 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Content-Type: text/plain; charset=us-ascii
> > I was doing a quick security audit
> > of my gateway box using nmap, and
> > found this:
> > 31337/TCP open Elite
> >
> > Does anyone know what this is?
Either Bait or a trojan. I would treat this box with suspicion until you positively identify this service.
If it's a winblows box, it's almost certainly a trojan, sub7, back orifice, or something similar.
Hope this helps.....
AL
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Exmh version 2.2 06/23/2000
iQCVAwUBO2l+wNuN3h5YyVRRAQLgYwP/XpOvnbNikIkstpZKtAM+6wKYKtqHOKJR
hGlkPeb6GlPQr66l9OI23NGefGvr4RfW6jFYMTPFdX4f3HZZTU5+/0Ps6wBrWLfr
bTC3VjZrQ25sXqfTe2lfFGjncY5IQyzH9DIJ+nvQImL4akXVd98nWoDdisXV1aoJ
gYWpH/NUadQ=
=oHtd
-----END PGP SIGNATURE-----
More information about the rescue
mailing list