Date: Thu, 01 Jun 2000 21:47:10 -0400 From: "Scott I. Remick" <scott@computeralt.com> To: freebsd-questions@freebsd.org Subject: Ports 1077 and 50419? Message-ID: <4.3.1.2.20000601214655.0248db80@mail.computeralt.com>
next in thread | raw e-mail | index | archive | help
I just watched a crapload of traffic occur between a dialup user and our FreeBSD box. Traffic was TCP between the dialup's port 1077 and the FreeBSD box's port 50419. Most of the traffic was from the FreeBSD box to the client and it pretty much flooded the connection. Eventually it stopped. I did some looking around and couldn't find anything that would use those ports. The closest was the fake "bosniffer" which is really BO in disguise, but from reading the way it works, this wasn't it <http://www.netspy.net/sniff.html>. I was about to blindly block those ports for lack of any other solution, but then the traffic stopped. So I'll check with you guys first. Any thoughts? ----------------------- Scott I. Remick scott@computeralt.com Network and Information (802)388-7545 ext. 236 Systems Manager FAX:(802)388-3697 Computer Alternatives, Inc. http://www.computeralt.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.1.2.20000601214655.0248db80>