Re: BackOrifice on Linux?

To: Kent West <westk@acu.edu>, debian-user@lists.debian.org
Subject: Re: BackOrifice on Linux?
From: UnKnown <rak@burst.fcien.edu.uy>
Date: Wed, 29 Jan 2003 09:14:57 -0300
Message-id: <[🔎] 20030129121457.GB19479@burst.fcien.edu.uy>
In-reply-to: <[🔎] 3E3707A7.2080005@acu.edu>
References: <[🔎] 3E3707A7.2080005@acu.edu>

You may have install the fakebo package it is design to implemente a fake
Back Orifice, to capture attacks of this tipe to your network. Any way run 
a netstat -p to see wich process is using that port.

Cheers,
	rak

On Tue, Jan 28, 2003 at 04:43:51PM -0600, Kent West wrote:
> I just ran the command "sudo nmap  -sT -sU localhost" which listed the 
> following:
> 
> . . .
> 
> 12345/tcp  open        NetBus                 
> 12346/tcp  open        NetBus                 
> 27665/tcp  open        Trinoo_Master          
> 31335/udp  open        Trinoo_Register        
> 31337/tcp  open        Elite                  
> 31337/udp  open        BackOrifice            
> 32770/udp  open        sometimes-rpc4         
> 
> . . .
> 
> 
> 
> Should I be concerned, or is this maybe part of portsentry or something 
> similar?
> 
> Sweating just a bit,
> Kent
> 
> 
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-user-request@lists.debian.org 
> with a subject of "unsubscribe". Trouble? Contact 
> listmaster@lists.debian.org
>

Reply to:

References:
- BackOrifice on Linux?
  - From: Kent West <westk@acu.edu>

Prev by Date: Re: PGP Signatures
Next by Date: pppd on demand problems...
Previous by thread: BackOrifice on Linux?
Next by thread: Re: BackOrifice on Linux?
Index(es):
- Date
- Thread