Re: A second question of Security

Michael H. Warfield (mhw@wittsend.com)
Mon, 20 Dec 1999 11:18:21 -0500


On Mon, Dec 20, 1999 at 05:11:01PM +0100, Mathias Feiler wrote:

[...]

> So I checked for ports listening on my machine
> .... and ...
> found some ports on which a service seems to be listening, but
> I was'nt able to tell what process it was.
> I worked it out by just killing one by one ... Bloddy !

> Now the Q:
> Is there a standard way (Linux,Aix,Solaris,..) to get the
> port-process-mapping out of the kernel?
> I.e. something like "netstat -UgglySwitch" or such

I use lsof. If you have it on your system (it should be in
/usr/sbin) just type "lsof -i tcp" to see what tcp ports are open and
"lsof -i udp" for the udp ports. It will list out the processes which
have those sockets open. Lsof is a great tool. If you don't have it
installed, track it down and install it. It should be on your distro
CD somewhere (but I don't think it's installed by default by RedHat - pitty).

IMU that you get pretty much get the same thing out of fuser, but
I haven't used that.

> Thankyou very much for Your attention,
> for your answer in ahead and
> sorry for my awfull insufficient enlish
> and last but not least:

> A very blessed christmess and a happy y2k!

> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
> Hochachtungsvoll und mit freundlichen Gruessen aus dem Dungeon :
> xxxxx MATHIAS
> X __ \ ____/ ___/ / / ___/ __
> X C O-O / / / / / / \ _\||/_
> X _\ __/ __/ / / __/ _ ___/ o o
> X _@ / / / / / / \ (_)
> | | __/ _____/ __/ _____/ _____/ __/ \__ ===
>
> M. Feiler Roßbergstr.1 72649 Wolfschlugen 0049 (0)7022 560965 (Privat)
> feiler@uni-hohenheim.de RZ (620) 0049 (0)711/459-3949 (Uni)
> PGP public key & Homepage : http://www.uni-hohenheim.de/~feiler
> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Mike

-- 
 Michael H. Warfield    |  (770) 985-6132   |  mhw@WittsEnd.com
  (The Mad Wizard)      |  (770) 331-2437   |  http://www.wittsend.com/mhw/
  NIC whois:  MHW9      |  An optimist believes we live in the best of all
 PGP Key: 0xDF1DD471    |  possible worlds.  A pessimist is sure of it!

- To unsubscribe from this list: send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.rutgers.edu