From owner-freebsd-security Thu May 17 11:18:11 2001 Delivered-To: freebsd-security@freebsd.org Received: from q.closedsrc.org (ip233.gte15.rb1.bel.nwlink.com [209.20.244.233]) by hub.freebsd.org (Postfix) with ESMTP id E9BDA37B422 for ; Thu, 17 May 2001 11:18:08 -0700 (PDT) (envelope-from lplist@closedsrc.org) Received: by q.closedsrc.org (Postfix, from userid 1003) id 1ADE255407; Thu, 17 May 2001 11:09:07 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by q.closedsrc.org (Postfix) with ESMTP id 0AF9451610; Thu, 17 May 2001 11:09:07 -0700 (PDT) Date: Thu, 17 May 2001 11:09:07 -0700 (PDT) From: Linh Pham To: Bill Mitcheson Cc: Subject: Re: Port 1023. In-Reply-To: <3B041115.F4C3DF78@pyramus.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 2001-05-17, Bill Mitcheson scribbled: # We noticed unauthorized activity yesterday. After investigating we found # that there was someone coming in from Asia and they were trying to # access port 1023. I could not find much info on that port and was # wondering if anyone knows of that port, what common attacks to that port # are, and how to stop future attacks? If I remember correctly, port 1023/tcp is a reserved port set aside... port 1022/tcp and 1024/tcp as well. I don't know of a program that uses 1023/tcp... sorry :( -- Linh Pham [lplist@closedsrc.org] // 404b - Brain not found To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message