| Kamalsk's profileKamalsk spacePhotosBlogLists |  Tools  Help |
|
May 16 Linux Yum Local UpdateConfiguring a Local yum ServerThe skills you need to configure a local yum server are not related to yum. They require knowledge of the FTP, Apache, or NFS services. While this section is not designed to provide a complete guide to any of these services, it provides a description of how you can configure a yum repository server based on the settings described earlier for Fedora Core 4 updates. Because I personally prefer the efficiency of the FTP and NFS services for sharing files, I’ve covered the configuration steps required only for those services. For completeness, I’ve described how you can configure an Apache server to share files on a RHEL 4 yum repository near the end of this chapter. If you’re configuring a yum server, what you do will vary based on the following factors:
As with other network services, yum servers may be sensitive to any firewalls that you may configure. If you have a firewall between the yum server computer and associated clients, you’ll need to make sure traffic can travel through appropriate TCP/IP ports; for example, Apache services require access through TCP/IP port 80. Sure, there are ways to "tunnel" data through other services, such as SSH, but that should not be necessary for updates limited to your internal network. In any case, that level of detail is beyond the scope of this book. Configuring an FTP yum ServerOn current Red Hat/Fedora distributions, the default FTP server is vsFTP. According to its home page at http://vsftpd.beasts.org/, it’s the default FTP server used to share a number of Linux distributions, including Red Hat and Debian. It’s even used to share kernels through ftp.kernel.org. The default version of vsFTP is configured in the vsftpd RPM. The default installation works well in most cases. The vsFTP configuration file is stored in /etc/vsftpd/vsftpd.conf for Red Hat/Fedora distributions (/etc/vsftpd.conf for SUSE and Debian distributions). In this case, we’re working from the RHEL 4 version of vsFTP. By default, vsFTP files are stored in the /var/ftp directory. By convention, files that you copy for downloads are stored in the pub/ subdirectory. Therefore, the repository that you create should be in the /var/ftp/pub directory. For the example described earlier, update RPMs are stored in the following directory: /var/ftp/pub/yum/4/i386/updates If you’ve used the commands described earlier for Fedora Core 4, you’ll find the update header database in the repodata/ subdirectory. There is a substantial number of options for vsFTP, most of which you can configure in the vsftpd.conf configuration file. The following is a review of active options in the RHEL 4 version of this file. If you want to check the current defaults for these and other options, read the vsftpd.conf man page associated with your vsFTP RPM. anonymous_enable=yes You absolutely want to enable anonymous access for a FTP-based yum server. Anonymous access is normally enabled by default on a vsFTP server. local_enable=yes It’s normally best to disable access by regular users to a FTP-based yum server. As it is disabled by default, all you need to do is comment out this option. write_enable=yes Naturally, because you do not want anyone (unless authorized) to overwrite (or even add) to a yum-repository, you should disable write access. local_umask=022 If you do authorize write access (I believe you should not do so on an FTP-based yum server), this option sets the umask for any files created by users who are logged into your FTP server. dirmessage_enable=yes If active, this option looks for and reads any .message file that exists in the local directory. This can be useful if you want to send messages to other administrators. xferlog_enable=yes If active, this option logs downloads (and uploads) on the vsFTP server in the /var/log/xferlog file. For example, when I downloaded an updated version of yum, the vsFTP server placed the following entry in that file: Mon Sep 2 17:18:25 2005 1 192.168.0.20 390363 /pub/yum/4/i386/updates/yum-2.4.0-0.fc4.noarch.rpm b _ o a anonymous@ ftp 0 * c As you can see, this lists the date and time of the transfer, the client IP address, as well as the size and location of the file. This is a standard format shared with the WU-FTP server and can be mined as a database for more information on client computers that connect to your server. connect_from_port_20=yes Some FTP clients require this option, which uses TCP/IP port 20 for data transfers. xferlog_std_format=yes If you’ve activated the xferlog_enable option noted earlier, this option supports a standard format shared with the WU-FTP server. pam_service_name=vsftpd The pam_service_name option defers to Pluggable Authentication Modules to help secure the vsFTP service. This particular option sets rules in /etc/pam.d/vsftpd. One of the key options in this file prohibits users listed in /etc/vsftpd.ftpusers from logging into this vsFTP server. userlist_enable=YES As configured, this is redundant with the previous command. When enabled, it makes the vsFTP server read the /etc/vsftpd.user_list file and deny access to all who attempt to connect as one of the users listed in this file. By default, this file contains the same list of users as shown in /etc/vsftpd.users. listen=YES By default, Red Hat / Fedora configures the vsFTP server as a standalone service, with a vsftpd activation script in the /etc/rc.d/init.d directory. In contrast, SUSE does not configure vsFTP as a stand-alone service and configures listen=NO by default. tcp_wrappers=YES As configured, Red Hat / Fedora configures the vsFTP server for one more level of security, through TCP Wrappers support, which allows you to configure more security related commands in the /etc/hosts.allow and /etc/hosts.deny files.When you’re satisfied with the configuration, you should activate the vsFTP server with the following command (which is not required if you’ve set listen=NO): /etc/init.d/vsftpd start Finally, you can make sure that vsFTP is active the next time you reboot Linux with the following command: chkconfig vsftpd on This command activates the vsFTP server whenever you’re in run levels 2, 3, 4, or 5. (If you configure vsFTP in xinetd, it activates it in the /etc/xinetd.d directory.) For the purpose of this chapter, assume the name of this server is yum.example.com. Configuring a yum Client for an FTP-Based yum RepositoryAfter you’ve configured this FTP yum server, configuring the associated yum client is a straightforward process. As you’ve seen in Chapter 6, yum configuration files that point to yum servers are normally configured in the /etc/yum.repos.d directory. For Fedora Core 4, we will examine the client file that points to the yum Update server: fedora-updates.repo. For the yum FTP server as configured, all you need to include in the fedora-updates.repo file is the following: [updates-released] name=Fedora Core $releasever - $basearch - Released Updates baseurl=ftp://yum.example.com/pub/yum/4/i386/updates enabled=1 gpgcheck=1 As described earlier, for a vsFTP server, this means that update RPMs as well as the associated repodata/ subdirectory are stored on the yum.example.com computer in the /var/ftp/pub/yum/4/i386/updates directory. Linux Yum Local UpdateConfiguring an NFS yum ServerOn current Red Hat/Fedora distributions, an NFS server is installed by default, courtesy of the nfs-utils RPM. The default installation works well in most cases. You can specify shared NFS directories in the /etc/exports configuration file. In this case, we’re working from the RHEL 4 version of NFS. You can share directories as configured on an NFS server. For the example described earlier, update RPMs are stored in the following directory: /var/ftp/pub/yum/4/i386/updates Therefore, you can share this directory at any level, as long as the mount point on the NFS client is consistent. For example, I’ve added the following line to my /etc/exports configuration file: /var/ftp/pub 192.168.1.0/24(ro,sync) This particular configuration command shares the /var/ftp/pub directory. It limits access to clients in the noted IP address range. Clients are allowed read-only (ro) access. Changes are committed to disk before any new requests are made (sync). NOTE The notation shown in /etc/exports is associated with Classless Inter-Domain Routing (CIDR). The 192.168.1.0/24 address corresponds to a range of client IP addresses from 192.168.1.1 and 192.168.1.254 (the range excludes network and broadcast addresses). For more information, see the exports man page Linux Administration Handbook by Evi Nemeth, Garth Snyder, and Trent Hein (Upper Saddle River, NJ: Prentice Hall, 2002). After you’re satisfied with the configuration in /etc/exports, deactivate the NFS server with the following command: /etc/init.d/nfs stop NOTE Remember, this chapter is focused on Fedora/Red Hat. The NFS server script goes by different names on other Linux distributions. By default, this should stop any NFS services, quotas, the NFS daemon, as well as the mountd daemon. Next, export the changes to /etc/exports with the following command: exportfs -a Now restart the NFS services with the following command: /etc/init.d/nfs start Confirm the exports in from the local list with the following command: showmount -e If you’re on another system, you can find the shared NFS directories. For example, you can list those on a server named yum.example.com with the following command: showmount -e yum.example.com Finally, you can make sure that NFS is active the next time you reboot Linux with the following command: chkconfig nfs on This command activates the NFS server whenever you’re in run levels 2, 3, 4, or 5. Configuring an NFS yum ClientYou’ll need to mount the NFS share on an appropriate local directory, and then configure the associated file in /etc/yum.repos.d to point to that share. Because we’re configuring a share for Fedora updates, we’ll modify the fedora-updates.repo file. First, on the NFS client, you should confirm your ability to connect to a shared NFS directory. The following command connects to the yum.example.com NFS server to find what shares are available on that server: showmount -e yum.example.com You’ll see the shared directories that you configured earlier, including /var/ftp/pub. I’ve mounted it on the local /var/yum directory with the following command: mount yum.example.com:/var/ftp/pub /var/yum If the /var/yum directory does not yet exist, you’ll get an error message. Now you can configure your fedora-updates.repo file in your /etc/yum.repos.d directory. For the yum NFS server as configured, all you need in fedora-updates.repo is the following: [updates-released] name=Fedora Core $releasever - $basearch - Released Updates baseurl=file:///var/yum/yum/4/i386/updates enabled=1 gpgcheck=1 As described earlier, for a vsFTP server, this means that update RPMs as well as the associated repodata/ subdirectory are stored in the yum/4/i386/updates subdirectory, mounted on the /var/yum directory. Note the syntax associated with the baseurl command. The file: command works in place of ftp: or http:. The triple forward slash (///) is the standard syntax required for mounted directories. If you’ve configured a Fedora Updates repository on a Fedora Core server, this command may be slightly different. Based on the directory specified earlier, you would substitute the following baseurl command: baseurl=file:///var/ftp/pub/yum/4/i386/updates Naturally, you may want to configure this shared directory as part of the boot process for each NFS client. It’s possible to configure it in the default /etc/fstab configuration file, as well as through the Automounter daemon. I recommend the latter, which avoids hangups when there are network problems. The Automounter daemon is easy to configure; it requires the autofs RPM. After that RPM is installed, here’s how you can configure a NFS client for Fedora updates as configured in this chapter:
July 22 Things Firefox Can Do for YouThings Firefox Can Do for YouThere are hundreds of things that Firefox can do. Extensions can enhance your Firefox, but browsing through hundreds of extensions can be time consuming and some of them are useless. What are the most popular and most functional Firefox extenstions ?
All Ports Defined!All Ports Defined!All Ports Defined! Port Protocol Keyword Description 1 tcp tcpmux TCP Port Service Multiplexer [rfc-1078] 1 udp SocketsdesTroie [trojan] Sockets des Troie 1 udp tcpmux TCP Port Service Multiplexer 2 tcp compressnet Management Utility 2 tcp Death [trojan] Death 2 udp compressnet Management Utility 3 tcp compressnet Compression Process 3 udp compressnet Compression Process 5 tcp rje Remote Job Entry 5 udp rje Remote Job Entry 7 tcp echo Echo 7 udp echo Echo 9 tcp discard Discard 9 udp discard Discard 11 tcp systat Active Users 11 udp systat Active Users 13 tcp daytime Daytime 13 udp daytime Daytime 15 tcp netstat Netstat 15 tcp B2 [trojan] B2 17 tcp qotd Quote of the Day 17 udp qotd Quote of the Day 18 tcp msp Message Send Protocol 18 udp msp Message Send Protocol 19 tcp chargen Character Generator 19 udp chargen Character Generator 20 tcp ftp-data File Transfer [Default Data] 20 udp ftp-data File Transfer [Default Data] 20 tcp SennaSpyFTPserver [trojan] Senna Spy FTP server 21 tcp ftp File Transfer [Control] 21 udp ftp File Transfer [Control] 21 tcp BackConstruction [trojan] Back Construction 21 tcp BladeRunner [trojan] BladeRunner 21 tcp CattivikFTPServer [trojan] Cattivik FTP Server 21 tcp CCInvader [trojan] CC Invader 21 tcp DarkFTP [trojan] Dark FTP 21 tcp DolyTrojan [trojan] Doly Trojan 21 tcp Fore [trojan] Fore 21 tcp FreddyK [trojan] FreddyK 21 tcp InvisibleFTP [trojan] Invisible FTP 21 tcp Juggernaut42 [trojan] Juggernaut 42 21 tcp Larva [trojan] Larva 21 tcp MotIvFTP [trojan] MotIv FTP 21 tcp NetAdministrator [trojan] Net Administrator 21 tcp Ramen [trojan] Ramen 21 tcp RTB666 [trojan] RTB 666 21 tcp SennaSpyFTPserver [trojan] Senna Spy FTP server 21 tcp Traitor21 [trojan] Traitor 21 21 tcp [trojan]TheFlu [trojan] The Flu 21 tcp WebEx [trojan] WebEx 21 tcp WinCrash [trojan] WinCrash 21 tcp AudioGalaxy AudioGalaxy file sharing app 22 tcp Adoresshd [trojan] Adore sshd 22 tcp Shaft [trojan] Shaft 22 tcp ssh SSH Remote Login Protocol 22 udp pcanywhere PCAnywhere (deprecated) 22 udp ssh SSH Remote Login Protocol 23 tcp telnet Telnet 23 udp telnet Telnet 23 tcp ADMworm [trojan] ADM worm 23 tcp FireHacKer [trojan] Fire HacKer 23 tcp MyVeryOwntrojan [trojan] My Very Own trojan 23 tcp RTB666 [trojan] RTB 666 23 tcp TelnetPro [trojan] Telnet Pro 23 tcp TinyTelnetServer [trojan] Tiny Telnet Server - TTS 23 tcp TruvaAtl [trojan] Truva Atl 24 tcp BO2KControlPort [trojan] Back Orifice 2000 (BO2K) Control Port 24 tcp priv-mail any private mail system 24 udp priv-mail any private mail system 25 tcp smtp Simple Mail Transfer 25 udp smtp Simple Mail Transfer 25 tcp Ajan [trojan] Ajan 25 tcp Antigen [trojan] Antigen 25 tcp Barok [trojan] Barok 25 tcp BSE [trojan] BSE 25 tcp EmailPasswordSender [trojan] Email Password Sender - EPS 25 tcp EPSII [trojan] EPS II 25 tcp Gip [trojan] Gip 25 tcp Gris [trojan] Gris 25 tcp Happy99 [trojan] Happy99 25 tcp Hpteammail [trojan] Hpteam mail 25 tcp Hybris [trojan] Hybris 25 tcp Iloveyou [trojan] I love you 25 tcp Kuang2 [trojan] Kuang2 25 tcp MagicHorse [trojan] Magic Horse 25 tcp MBTMailBombingTrojan [trojan] MBT (Mail Bombing Trojan) 25 tcp MBT [trojan] MBT (Mail Bombing Trojan) 25 tcp MoscowEmailtrojan [trojan] Moscow Email trojan 25 tcp Naebi [trojan] Naebi 25 tcp NewAptworm [trojan] NewApt worm 25 tcp ProMailtrojan [trojan] ProMail trojan 25 tcp Shtirlitz [trojan] Shtirlitz 25 tcp Stealth [trojan] Stealth 25 tcp Stukach [trojan] Stukach 25 tcp Tapiras [trojan] Tapiras 25 tcp Terminator [trojan] Terminator 25 tcp WinPC [trojan] WinPC 25 tcp WinSpy [trojan] WinSpy 26 tcp altavista-fw97 AltaVista Firewall97 27 tcp altavista-fw97 AltaVista Firewall97 27 tcp nsw-fe NSW User System FE 27 udp nsw-fe NSW User System FE 28 tcp altavista-fw97 AltaVista Firewall97 29 tcp altavista-fw97 AltaVista Firewall97 29 tcp msg-icp MSG ICP 29 udp msg-icp MSG ICP 30 tcp Agent40421 [trojan] Agent 40421 31 tcp msg-auth MSG Authentication 31 udp msg-auth MSG Authentication 31 tcp Agent31 [trojan] Agent 31 31 tcp Agent31 [trojan] Agent 31 31 tcp HackersParadise [trojan] Hackers Paradise 31 tcp MastersParadise [trojan] Masters Paradise 33 tcp dsp Display Support Protocol 33 udp dsp Display Support Protocol 35 tcp priv-print any private printer server 35 udp priv-print any private printer server 37 tcp time Time 37 udp time Time 38 tcp rap Route Access Protocol 38 udp rap Route Access Protocol 39 tcp rlp Resource Location Protocol 39 udp rlp Resource Location Protocol 39 tcp SubSARI [trojan] SubSARI 41 tcp graphics Graphics 41 udp graphics Graphics 41 tcp DeepThroat [trojan] DeepThroat 41 tcp DeepThroat [trojan] Deep Throat 41 tcp Foreplay [trojan] Foreplay 42 tcp name Host Name Server 42 udp name Host Name Server 43 tcp whois nicname 43 udp whois nicname 44 tcp mpm-flags MPM FLAGS Protocol 44 udp mpm-flags MPM FLAGS Protocol 44 tcp Arctic [trojan] Arctic 45 tcp mpm Message Processing Module [recv] 45 udp mpm Message Processing Module [recv] 46 tcp mpm-snd MPM [default send] 46 udp mpm-snd MPM [default send] 47 tcp ni-ftp NI FTP 47 udp ni-ftp NI FTP 48 tcp auditd Digital Audit Daemon 48 udp auditd Digital Audit Daemon 48 tcp DRAT [trojan] DRAT 48 tcp DRAT [trojan] DRAT 49 tcp tacacs Login Host Protocol (TACACS) 49 udp tacacs Login Host Protocol (TACACS) 50 tcp re-mail-ck Remote Mail Checking Protocol 50 udp re-mail-ck Remote Mail Checking Protocol 50 tcp DRAT [trojan] DRAT 50 tcp DRAT [trojan] DRAT 51 tcp la-maint IMP Logical Address Maintenance 51 udp la-maint IMP Logical Address Maintenance 52 tcp xns-time XNS Time Protocol 52 udp xns-time XNS Time Protocol 53 tcp domain Domain Name Server 53 udp domain Domain Name Server 53 tcp ADMworm [trojan] ADM worm 53 tcp Lion [trojan] Lion 54 tcp xns-ch XNS Clearinghouse 54 udp xns-ch XNS Clearinghouse 55 tcp isi-gl ISI Graphics Language 55 udp isi-gl ISI Graphics Language 56 tcp xns-auth XNS Authentication 56 udp xns-auth XNS Authentication 57 tcp priv-term any private terminal access 57 udp priv-term any private terminal access 57 tcp mtp Mail Transfer Protocol 58 tcp xns-mail XNS Mail 58 udp xns-mail XNS Mail 58 tcp DMSetup [trojan] DMSetup 59 tcp priv-file any private file service 59 udp priv-file any private file service 59 tcp DMSetup [trojan] DMSetup 59 tcp DMSetup [trojan] DMSetup 61 tcp ni-mail NI MAIL 61 udp ni-mail NI MAIL 62 tcp acas ACA Services 62 udp acas ACA Services 63 tcp whois++ whois++ 63 udp whois++ whois++ 63 tcp via-ftp VIA Systems - FTP & whois++ 63 udp via-ftp VIA Systems - FTP & whois++ 64 tcp covia Communications Integrator (CI) 64 udp covia Communications Integrator (CI) 65 tcp tacacs-ds TACACS-Database Service 65 udp tacacs-ds TACACS-Database Service 66 tcp sql*net Oracle SQL*NET 66 udp sql*net Oracle SQL*NET 67 tcp bootps Bootstrap Protocol Server 67 udp bootps Bootstrap Protocol Server 68 tcp bootpc Bootstrap Protocol Client 68 udp bootpc Bootstrap Protocol Client 69 tcp tftp Trivial File Transfer 69 udp tftp Trivial File Transfer 69 tcp BackGate [trojan] BackGate 70 tcp gopher Gopher 70 udp gopher Gopher 71 tcp netrjs-1 Remote Job Service 71 udp netrjs-1 Remote Job Service 72 tcp netrjs-2 Remote Job Service 72 udp netrjs-2 Remote Job Service 73 tcp netrjs-3 Remote Job Service 73 udp netrjs-3 Remote Job Service 74 tcp netrjs-4 Remote Job Service 74 udp netrjs-4 Remote Job Service 75 tcp priv-dial any private dial out service 75 udp priv-dial any private dial out service 76 tcp deos Distributed External Object Store 76 udp deos Distributed External Object Store 77 tcp priv-rje any private RJE service netrjs 77 udp priv-rje any private RJE service netjrs 78 tcp vettcp vettcp 78 udp vettcp vettcp 79 tcp finger Finger 79 udp finger Finger 79 tcp BO2KDataPort [trojan] Back Orifice 2000 (BO2K) Data Port 79 tcp CDK [trojan] CDK 79 tcp Firehotcker [trojan] Firehotcker 80 tcp http World Wide Web HTTP 80 udp http World Wide Web HTTP 80 tcp 711trojan [trojan] 711 trojan (Seven Eleven) 80 tcp AckCmd [trojan] AckCmd 80 tcp AckCmd [trojan] AckCmd 80 tcp BackEnd [trojan] Back End 80 tcp BO2000Plug-Ins [trojan] Back Orifice 2000 Plug-Ins 80 tcp Cafeini [trojan] Cafeini 80 tcp CGIBackdoor [trojan] CGI Backdoor 80 tcp Executor [trojan] Executor 80 tcp GodMessage4Creator [trojan] God Message 4 Creator 80 tcp GodMessage [trojan] God Message 80 tcp Hooker [trojan] Hooker 80 tcp IISworm [trojan] IISworm 80 tcp MTX [trojan] MTX 80 tcp NCX [trojan] NCX 80 tcp Noob [trojan] Noob 80 tcp Ramen [trojan] Ramen 80 tcp ReverseWWWTunnel [trojan] Reverse WWW Tunnel Backdoor 80 tcp RingZero [trojan] RingZero 80 tcp RTB666 [trojan] RTB 666 80 tcp Seeker [trojan] Seeker 80 tcp WANRemote [trojan] WAN Remote 80 tcp WebDownloader [trojan] WebDownloader 80 tcp WebServerCT [trojan] Web Server CT 81 tcp hosts2-ns HOSTS2 Name Server 81 udp hosts2-ns HOSTS2 Name Server 81 tcp RemoConChubo [trojan] RemoConChubo 81 tcp RemoConChubo [trojan] RemoConChubo 82 tcp xfer XFER Utility 82 udp xfer XFER Utility 83 tcp mit-ml-dev MIT ML Device 83 udp mit-ml-dev MIT ML Device 84 tcp ctf Common Trace Facility 84 udp ctf Common Trace Facility 85 tcp mit-ml-dev MIT ML Device 85 udp mit-ml-dev MIT ML Device 86 tcp mfcobol Micro Focus Cobol 86 udp mfcobol Micro Focus Cobol 87 tcp priv-term-l any private terminal link ttylink 88 tcp kerberos Kerberos 88 udp kerberos Kerberos 89 tcp su-mit-tg SU MIT Telnet Gateway 89 udp su-mit-tg SU MIT Telnet Gateway 90 tcp dnsix DNSIX Securit Attribute Token Map 90 udp dnsix DNSIX Securit Attribute Token Map 91 tcp mit-dov MIT Dover Spooler 91 udp mit-dov MIT Dover Spooler 92 tcp npp Network Printing Protocol 92 udp npp Network Printing Protocol 93 tcp dcp Device Control Protocol 93 udp dcp Device Control Protocol 94 tcp objcall Tivoli Object Dispatcher 94 udp objcall Tivoli Object Dispatcher 95 tcp supdup BSD supdupd(icon_cool.gif 95 udp supdup BSD supdupd(icon_cool.gif 96 tcp dixie DIXIE Protocol Specification 96 udp dixie DIXIE Protocol Specification 97 tcp swift-rvf Swift Remote Virtural File Protocol 97 udp swift-rvf Swift Remote Virtural File Protocol 98 tcp linuxconf linuxconf 98 tcp tacnews TAC News 98 udp tacnews TAC News 99 tcp metagram Metagram Relay 99 udp metagram Metagram Relay 99 tcp HiddenPort [trojan] Hidden Port 99 tcp Hidden [trojan] Hidden 99 tcp Mandragore [trojan] Mandragore 99 tcp NCX [trojan] NCX 100 tcp newacct [unauthorized use] 101 tcp hostname NIC Host Name Server 101 udp hostname NIC Host Name Server 102 tcp iso-tsap ISO Transport Service Access Point 102 udp iso-tsap ISO Transport Service Access Point 103 tcp gppitnp Genesis Point-to-Point Trans Net 103 udp gppitnp Genesis Point-to-Point Trans Net 104 tcp acr-nema ACR-NEMA Digital Imag. & Comm. 300 104 udp acr-nema ACR-NEMA Digital Imag. & Comm. 300 105 tcp csnet-ns Mailbox Name Nameserver 105 udp csnet-ns Mailbox Name Nameserver 106 tcp 3com-tsmux 3COM-TSMUX 106 udp 3com-tsmux 3COM-TSMUX 106 tcp pop3pw Eudora compatible PW changer 107 tcp rtelnet Remote Telnet 107 udp rtelnet Remote Telnet Service 108 tcp snagas SNA Gateway Access Server 108 udp snagas SNA Gateway Access Server 109 tcp pop2 PostOffice V.2 109 udp pop2 PostOffice V.2 110 tcp pop3 PostOffice V.3 110 udp pop3 PostOffice V.3 110 tcp ProMailtrojan [trojan] ProMail trojan 110 tcp ProMailtrojan [trojan] ProMail trojan 111 tcp sunrpc portmapper rpcbind 111 udp sunrpc portmapper rpcbind 112 tcp mcidas McIDAS Data Transmission Protocol 112 udp mcidas McIDAS Data Transmission Protocol 113 tcp auth ident Authentication Service 113 udp auth ident Authentication Service 113 tcp InvisibleIdentdDaemon [trojan] Invisible Identd Daemon 113 tcp InvisibleIdentdDeamon [trojan] Invisible Identd Deamon 113 tcp Kazimas [trojan] Kazimas 114 tcp audionews Audio News Multicast 114 udp audionews Audio News Multicast 115 tcp sftp Simple File Transfer Protocol 115 udp sftp Simple File Transfer Protocol 116 tcp ansanotify ANSA REX Notify 116 udp ansanotify ANSA REX Notify 117 tcp uucp-path UUCP Path Service 117 udp uucp-path UUCP Path Service 118 tcp sqlserv SQL Services 118 udp sqlserv SQL Services 119 tcp nntp Network News Transfer Protocol 119 udp nntp Network News Transfer Protocol 119 tcp Happy99 [trojan] Happy99 (a.k.a. Ska trojan) 120 tcp cfdptkt CFDPTKT 120 udp cfdptkt CFDPTKT 121 tcp erpc Encore Expedited Remote Pro.Call 121 udp erpc Encore Expedited Remote Pro.Call 121 tcp AttackBot [trojan] Attack Bot 121 tcp GodMessage [trojan] God Message 121 tcp JammerKillah [trojan] JammerKillah 121 tcp JammerKillah [trojan] Jammer Killah 122 tcp smakynet SMAKYNET 122 udp smakynet SMAKYNET 123 tcp NetController [trojan] Net Controller 123 tcp NetController [trojan] Net Controller 123 tcp ntp Network Time Protocol 123 udp ntp Network Time Protocol 124 tcp ansatrader ANSA REX Trader 124 udp ansatrader ANSA REX Trader 125 tcp locus-map Locus PC-Interface Net Map Ser 125 udp locus-map Locus PC-Interface Net Map Ser 126 tcp nxedit NXEdit 126 udp nxedit NXEdit 126 tcp unitary Unisys Unitary Login 126 udp unitary Unisys Unitary Login 127 tcp locus-con Locus PC-Interface Conn Server 127 udp locus-con Locus PC-Interface Conn Server 128 tcp gss-xlicen GSS X License Verification 128 udp gss-xlicen GSS X License Verification 129 tcp pwdgen Password Generator Protocol 129 udp pwdgen Password Generator Protocol 130 tcp cisco-fna cisco FNATIVE 130 udp cisco-fna cisco FNATIVE 131 tcp cisco-tna cisco TNATIVE 131 udp cisco-tna cisco TNATIVE 132 tcp cisco-sys cisco SYSMAINT 132 udp cisco-sys cisco SYSMAINT 133 tcp statsrv Statistics Service 133 udp statsrv Statistics Service 133 tcp Farnaz [trojan] Farnaz 134 tcp ingres-net INGRES-NET Service 134 udp ingres-net INGRES-NET Service 135 tcp epmap DCE endpoint resolution 135 udp epmap DCE endpoint resolution 135 tcp loc-srv NCS Location Service 135 udp loc-srv NCS Location Service 136 tcp profile PROFILE Naming System 136 udp profile PROFILE Naming System 137 tcp netbios-ns NETBIOS Name Service 137 udp netbios-ns NETBIOS Name Service 137 tcp Chode [trojan] Chode 137 tcp Qaz [trojan] Qaz 137 udp Msinit [trojan] Msinit 138 tcp netbios-dgm NETBIOS Datagram Service 138 udp netbios-dgm NETBIOS Datagram Service 138 tcp Chode [trojan] Chode 139 tcp netbios-ssn NETBIOS Session Service 139 udp netbios-ssn NETBIOS Session Service 139 tcp Chode [trojan] Chode 139 tcp GodMessageworm [trojan] God Message worm 139 tcp Msinit [trojan] Msinit 139 tcp Netlog [trojan] Netlog 139 tcp Network [trojan] Network 139 tcp Qaz [trojan] Qaz 139 tcp Sadmind [trojan] Sadmind 139 tcp SMBRelay [trojan] SMB Relay 140 tcp emfis-data EMFIS Data Service 140 udp emfis-data EMFIS Data Service 141 tcp emfis-cntl EMFIS Control Service 141 udp emfis-cntl EMFIS Control Service 142 tcp bl-idm Britton-Lee IDM 142 udp bl-idm Britton-Lee IDM 142 tcp NetTaxi [trojan] NetTaxi 143 tcp imap Internet Message Access Protocol 143 udp imap Internet Message Access Protocol 144 tcp uma Universal Management Architecture 144 udp uma Universal Management Architecture 144 udp news NewS window system 144 tcp news NewS window system 145 tcp uaac UAAC Protocol 145 udp uaac UAAC Protocol 146 tcp iso-tp0 ISO-IP0 146 udp iso-tp0 ISO-IP0 146 tcp Infector [trojan] Infector 146 udp Infector [trojan] Infector 147 tcp iso-ip ISO-IP 147 udp iso-ip ISO-IP 148 tcp jargon Jargon 148 udp jargon Jargon 148 tcp cronus CRONUS-SUPPORT 148 udp cronus CRONUS-SUPPORT 149 tcp aed-512 AED 512 Emulation Service 149 udp aed-512 AED 512 Emulation Service 150 tcp sql-net SQL-NET 150 udp sql-net SQL-NET 151 tcp hems HEMS 151 udp hems HEMS 152 tcp bftp Background File Transfer Program 152 udp bftp Background File Transfer Program 153 tcp sgmp SGMP 153 udp sgmp SGMP 154 tcp netsc-prod NETSC 154 udp netsc-prod NETSC 155 tcp netsc-dev NETSC 155 udp netsc-dev NETSC 156 tcp sqlsrv SQL Service 156 udp sqlsrv SQL Service 157 tcp knet-cmp KNET VM Command Message Protocol 157 udp knet-cmp KNET VM Command Message Protocol 158 tcp pcmail-srv PCMail Server 158 udp pcmail-srv PCMail Server 159 tcp nss-routing NSS-Routing 159 udp nss-routing NSS-Routing 160 tcp sgmp-traps SGMP-TRAPS 160 udp sgmp-traps SGMP-TRAPS 161 tcp snmp SNMP 161 udp snmp SNMP 162 tcp snmptrap SNMPTRAP 162 udp snmptrap SNMPTRAP 163 tcp cmip-man CMIP TCP Manager 163 udp cmip-man CMIP TCP Manager 164 tcp cmip-agent CMIP TCP Agent 164 udp smip-agent CMIP TCP Agent 165 tcp xns-courier Xerox 165 udp xns-courier Xerox 166 tcp s-net Sirius Systems 166 udp s-net Sirius Systems 166 tcp NokNok [trojan] NokNok 167 tcp namp NAMP 167 udp namp NAMP 168 tcp rsvd RSVD 168 udp rsvd RSVD 169 tcp send SEND 169 udp send SEND 170 tcp print-srv Network PostScript 170 udp print-srv Network PostScript 170 tcp A-trojan [trojan] A-trojan 171 tcp multiplex Network Innovations Multiplex 171 udp multiplex Network Innovations Multiplex 172 tcp cl-1 Network Innovations CL 1 172 udp cl-1 Network Innovations CL 1 173 tcp xyplex-mux Xyplex 173 udp xyplex-mux Xyplex 174 tcp mailq MAILQ 174 udp mailq MAILQ 175 tcp vmnet VMNET 175 udp vmnet VMNET 176 tcp genrad-mux GENRAD-MUX 176 udp genrad-mux GENRAD-MUX 177 tcp xdmcp X Display Manager Control Protocol 177 udp xdmcp X Display Manager Control Protocol 178 tcp nextstep NextStep Window Server 178 udp nextstep NextStep Window Server 179 tcp bgp Border Gateway Protocol 179 udp bgp Border Gateway Protocol 180 tcp ris Intergraph 180 udp ris Intergraph 181 tcp unify Unify 181 udp unify Unify 182 tcp audit Unisys Audit SITP 182 udp audit Unisys Audit SITP 183 tcp ocbinder OCBinder 183 udp ocbinder OCBinder 184 tcp ocserver OCServer 184 udp ocserver OCServer 185 tcp remote-kis Remote-KIS 185 udp remote-kis Remote-KIS 186 tcp kis KIS Protocol 186 udp kis KIS Protocol 187 tcp aci Application Communication Interface 187 udp aci Application Communication Interface 188 tcp mumps Plus Five's MUMPS 188 udp mumps Plus Five's MUMPS 189 tcp qft Queued File Transport 189 udp qft Queued File Transport 190 tcp gacp Gateway Access Control Protocol 190 udp gacp Gateway Access Control Protocol 191 tcp prospero Prospero Directory Service 191 udp prospero Prospero Directory Service 192 tcp osu-nms OSU Network Monitoring System 192 udp osu-nms OSU Network Monitoring System 193 tcp srmp Spider Remote Monitoring Protocol 193 udp srmp Spider Remote Monitoring Protocol 194 tcp irc Internet Relay Chat Protocol 194 udp irc Internet Relay Chat Protocol 195 tcp dn6-nlm-aud DNSIX Network Level Module Audit 195 udp dn6-nlm-aud DNSIX Network Level Module Audit 196 tcp dn6-smm-red DNSIX Session Mgt Module Audit Redir 196 udp dn6-smm-red DNSIX Session Mgt Module Audit Redir 197 tcp dls Directory Location Service 197 udp dls Directory Location Service 198 tcp dls-mon Directory Location Service Monitor 198 udp dls-mon Directory Location Service Monitor 199 tcp smux SMUX 199 udp smux SMUX 200 tcp src IBM System Resource Controller 200 udp src IBM System Resource Controller 201 tcp at-rtmp AppleTalk Routing Maintenance 201 udp at-rtmp AppleTalk Routing Maintenance 202 tcp at-nbp AppleTalk Name Binding 202 udp at-nbp AppleTalk Name Binding 203 tcp at-3 AppleTalk Unused 203 udp at-3 AppleTalk Unused 204 tcp at-echo AppleTalk Echo 204 udp at-echo AppleTalk Echo 205 tcp at-5 AppleTalk Unused 205 udp at-5 AppleTalk Unused 206 tcp at-zis AppleTalk Zone Information 206 udp at-zis AppleTalk Zone Information 207 tcp at-7 AppleTalk Unused 207 udp at-7 AppleTalk Unused 208 tcp at-8 AppleTalk Unused 208 udp at-8 AppleTalk Unused 209 tcp qmtp The Quick Mail Transfer Protocol 209 udp qmtp The Quick Mail Transfer Protocol 209 tcp tam Trivial Authenticated Mail Protocol 209 udp tam Trivial Authenticated Mail Protocol 210 tcp z39.50 ANSI Z39.50 210 udp z39.50 ANSI Z39.50 211 tcp 914c Texas Instruments 914C/G Terminal 211 udp 914c Texas Instruments 914C/G Terminal 212 tcp anet ATEXSSTR 212 udp anet ATEXSSTR 213 tcp ipx IPX 213 udp ipx IPX 214 tcp vmpwscs VM PWSCS 214 udp vmpwscs VM PWSCS 215 tcp softpc Insignia Solutions 215 udp softpc Insignia Solutions 216 tcp CAIlic Computer Associates Int'l License Server 216 udp CAIlic Computer Associates Int'l License Server 216 tcp atls Access Technology License Server 216 udp atls Access Technology License Server 217 tcp dbase dBASE Unix 217 udp dbase dBASE Unix 218 tcp mpp Netix Message Posting Protocol 218 udp mpp Netix Message Posting Protocol 219 tcp uarps Unisys ARPs 219 udp uarps Unisys ARPs 220 tcp imap3 Interactive Mail Access Protocol v3 220 udp imap3 Interactive Mail Access Protocol v3 221 tcp fln-spx Berkeley rlogind with SPX auth 221 udp fln-spx Berkeley rlogind with SPX auth 222 tcp rsh-spx Berkeley rshd with SPX auth 222 udp rsh-spx Berkeley rshd with SPX auth 223 tcp cdc Certificate Distribution Center 223 udp cdc Certificate Distribution Center 224 tcp masqdialer masqdialer 224 udp masqdialer masqdialer 242 tcp direct Direct 242 udp direct Direct 243 tcp sur-meas Survey Measurement 243 udp sur-meas Survey Measurement 244 tcp inbusiness inbusiness 244 udp inbusiness inbusiness 244 tcp dayna Dayna 244 udp dayna Dayna 245 tcp link LINK 245 udp link LINK 246 tcp dsp3270 Display Systems Protocol 246 udp dsp3270 Display Systems Protocol 247 tcp subntbcst_tftp SUBNTBCST_TFTP 247 udp subntbcst_tftp SUBNTBCST_TFTP 248 tcp bhfhs bhfhs 248 udp bhfhs bhfhs 256 tcp rap RAP 256 udp rap RAP 256 tcp fw1-sync Checkpoint Firewall-1 state table sync 257 tcp set Secure Electronic Transaction 257 udp set Secure Electronic Transaction 257 tcp fw1-log Check Point FW-1/VPN-1 log transfer 258 tcp yak-chat Yak Winsock Personal Chat 258 udp yak-chat Yak Winsock Personal Chat 258 tcp fw1-mgmt Check Point FW-1/VPN-1 management 259 tcp esro-gen Efficient Short Remote Operations 259 udp esro-gen Efficient Short Remote Operations 259 tcp fw1-clntauth Check Point FW-1/VPN-1 client auth 259 udp fw1-rdp Check Point FW-1/VPN-1 key negotiations over RDP 260 tcp openport Openport 260 udp openport Openport 260 udp fw1-snmp Check Point FW-1/VPN-1 SNMP agent 261 tcp nsiiops IIOP Name Service over TLS SSL 261 udp nsiiops IIOP Name Service over TLS SSL 261 tcp fw1-mgmt Check Point FW-1/VPN-1 Management 261 tcp fw-snauth Check Point FW-1/VPN-1 session auth 262 tcp arcisdms Arcisdms 262 udp arcisdms Arcisdms 263 tcp hdap HDAP 263 udp hdap HDAP 264 tcp bgmp Border Gateway Multicast Protocol 264 udp bgmp Border Gateway Multicast Protocol 264 tcp fw1-topo Check Point VPN-1 topology download 265 tcp x-bone-ctl X-Bone CTL 265 udp x-bone-ctl X-Bone CTL 265 tcp fw1-key Check Point VPN-1 public key transfer protocol 266 tcp sst SCSI on ST 266 udp sst SCSI on ST 267 tcp td-service Tobit David Service Layer 267 udp td-service Tobit David Service Layer 268 tcp td-replica Tobit David Replica 268 udp td-replica Tobit David Replica 280 tcp http-mgmt http-mgmt 280 udp http-mgmt http-mgmt 281 tcp personal-link Personal Link 281 udp personal-link Personal Link 282 tcp cableport-ax Cable Port A X 282 udp cableport-ax Cable Port A X 283 tcp rescap rescap 283 udp rescap rescap 284 tcp corerjd corerjd 284 udp corerjd corerjd 286 tcp fxp-1 FXP-1 286 udp fxp-1 FXP-1 287 tcp k-block K-BLOCK 287 udp k-block K-BLOCK 308 tcp novastorbakcup Novastor Backup 308 udp novastorbakcup Novastor Backup 309 tcp entrusttime EntrustTime 309 udp entrusttime EntrustTime 310 tcp bhmds bhmds 310 udp bhmds bhmds 311 tcp asip-webadmin AppleShare IP WebAdmin 311 udp asip-webadmin AppleShare IP WebAdmin 312 tcp vslmp VSLMP 312 udp vslmp VSLMP 313 tcp magenta-logic Magenta Logic 313 udp magenta-logic Magenta Logic 314 tcp opalis-robot Opalis Robot 314 udp opalis-robot Opalis Robot 315 tcp dpsi DPSI 315 udp dpsi DPSI 316 tcp decauth decAuth 316 udp decauth decAuth 317 tcp zannet Zannet 317 udp zannet Zannet 318 tcp pkix-timestamp PKIX TimeStamp 318 udp pkix-timestamp PKIX TimeStamp 319 tcp ptp-event PTP Event 319 udp ptp-event PTP Event 320 tcp ptp-general PTP General 320 udp ptp-general PTP General 321 tcp pip PIP 321 udp pip PIP 322 tcp rtsps RTSPS 322 udp rtsps RTSPS 333 tcp texar Texar Security Port 333 udp texar Texar Security Port 334 tcp Backage [trojan] Backage 344 tcp pdap Prospero Data Access Protocol 344 udp pdap Prospero Data Access Protocol 345 tcp pawserv Perf Analysis Workbench 345 udp pawserv Perf Analysis Workbench 346 tcp zserv Zebra server 346 udp zserv Zebra server 347 tcp fatserv Fatmen Server 347 udp fatserv Fatmen Server 348 tcp csi-sgwp Cabletron Management Protocol 348 udp csi-sgwp Cabletron Management Protocol 349 tcp mftp mftp 349 udp mftp mftp 350 tcp matip-type-a MATIP Type A 350 udp matip-type-a MATIP Type A 351 tcp matip-type-b MATIP Type B 351 udp matip-type-b MATIP Type B 351 tcp bhoetty bhoetty 351 udp bhoetty bhoetty 352 tcp dtag-ste-sb DTAG 352 udp dtag-ste-sb DTAG 352 udp bhoedap4 bhoedap4 352 tcp bhoedap4 bhoedap4 353 tcp ndsauth NDSAUTH 353 udp ndsauth NDSAUTH 354 tcp bh611 bh611 354 udp bh611 bh611 355 tcp datex-asn DATEX-ASN 355 udp datex-asn DATEX-ASN 356 tcp cloanto-net-1 Cloanto Net 1 356 udp cloanto-net-1 Cloanto Net 1 357 tcp bhevent bhevent 357 udp bhevent bhevent 358 tcp shrinkwrap Shrinkwrap 358 udp shrinkwrap Shrinkwrap 359 tcp nsrmp Network Security Risk Management Protocol 359 udp nsrmp Network Security Risk Management Protocol 359 tcp tenebris_nts Tenebris Network Trace Service 359 udp tenebris_nts Tenebris Network Trace Service 360 tcp scoi2odialog scoi2odialog 360 udp scoi2odialog scoi2odialog 361 tcp semantix Semantix 361 udp semantix Semantix 362 tcp srssend SRS Send 362 udp srssend SRS Send 363 tcp rsvp_tunnel RSVP Tunnel 363 udp rsvp_tunnel RSVP Tunnel 364 tcp aurora-cmgr Aurora CMGR 364 udp aurora-cmgr Aurora CMGR 365 tcp dtk DTK 365 udp dtk DTK 366 tcp odmr ODMR 366 udp odmr ODMR 367 tcp mortgageware MortgageWare 367 udp mortgageware MortgageWare 368 tcp qbikgdp QbikGDP 368 udp qbikgdp QbikGDP 369 tcp rpc2portmap rpc2portmap 369 udp rpc2portmap rpc2portmap 370 tcp codaauth2 codaauth2 370 udp codaauth2 codaauth2 371 tcp clearcase Clearcase 371 udp clearcase Clearcase 372 tcp ulistproc ListProcessor 372 udp ulistproc ListProcessor 373 tcp legent-1 Legent Corporation 373 udp legent-1 Legent Corporation 374 tcp legent-2 Legent Corporation 374 udp legent-2 Legent Corporation 375 tcp hassle Hassle 375 udp hassle Hassle 376 tcp nip Amiga Envoy Network Inquiry Proto 376 udp nip Amiga Envoy Network Inquiry Proto 377 tcp tnETOS NEC Corporation 377 udp tnETOS NEC Corporation 378 tcp dsETOS NEC Corporation 378 udp dsETOS NEC Corporation 379 tcp is99c TIA EIA IS-99 modem client 379 udp is99c TIA EIA IS-99 modem client 380 tcp is99s TIA EIA IS-99 modem server 380 udp is99s TIA EIA IS-99 modem server 381 tcp hp-collector hp performance data collector 381 udp hp-collector hp performance data collector 382 tcp hp-managed-node hp performance data managed node 382 udp hp-managed-node hp performance data managed node 383 tcp hp-alarm-mgr hp performance data alarm manager 383 udp hp-alarm-mgr hp performance data alarm manager 384 tcp arns A Remote Network Server System 384 udp arns A Remote Network Server System 385 tcp ibm-app IBM Application 385 udp ibm-app IBM Application 386 tcp asa ASA Message Router Object Def. 386 udp asa ASA Message Router Object Def. 387 tcp aurp Appletalk Update-Based Routing Pro. 387 udp aurp Appletalk Update-Based Routing Pro. 388 tcp unidata-ldm Unidata LDM 388 udp unidata-ldm Unidata LDM 389 tcp ldap Lightweight Directory Access Protocol 389 udp ldap Lightweight Directory Access Protocol 389 tcp ms-ils Mcft NetMeeting ILS server default port (for versions older than w2k) 390 tcp uis UIS 390 udp uis UIS 391 tcp synotics-relay SynOptics SNMP Relay Port 391 udp synotics-relay SynOptics SNMP Relay Port 392 tcp synotics-broker SynOptics Port Broker Port 392 udp synotics-broker SynOptics Port Broker Port 393 tcp meta5 Meta5 393 udp meta5 Meta5 393 tcp dis Data Interpretation System 393 udp dis Data Interpretation System 394 tcp embl-ndt EMBL Nucleic Data Transfer 394 udp embl-ndt EMBL Nucleic Data Transfer 395 tcp netcp NETscout Control Protocol 395 udp netcp NETscout Control Protocol 396 tcp netware-ip Novell Netware over IP 396 udp netware-ip Novell Netware over IP 397 tcp mptn Multi Protocol Trans. Net. 397 udp mptn Multi Protocol Trans. Net. 398 tcp kryptolan Kryptolan 398 udp kryptolan Kryptolan 399 tcp iso-tsap-c2 ISO Transport Class 2 Non-Control over TCP 399 udp iso-tsap-c2 ISO Transport Class 2 Non-Control over TCP 400 tcp work-sol Workstation Solutions 400 udp work-sol Workstation Solutions 401 tcp ups Uninterruptible Power Supply 401 udp ups Uninterruptible Power Supply 402 tcp genie Genie Protocol 402 udp genie Genie Protocol 403 tcp decap decap 403 udp decap decap 404 tcp nced nced 404 udp nced nced 405 tcp ncld ncld 405 udp ncld ncld 406 tcp imsp Interactive Mail Support Protocol 406 udp imsp Interactive Mail Support Protocol 407 tcp timbuktu Timbuktu 407 udp timbuktu Timbuktu 408 tcp prm-sm Prospero Resource Manager Sys. Man. 408 udp prm-sm Prospero Resource Manager Sys. Man. 409 tcp prm-nm Prospero Resource Manager Node Man. 409 udp prm-nm Prospero Resource Manager Node Man. 410 tcp decladebug DECLadebug Remote Debug Protocol 410 udp decladebug DECLadebug Remote Debug Protocol 411 tcp rmt Remote MT Protocol 411 udp rmt Remote MT Protocol 411 tcp Backage [trojan] Backage 412 tcp synoptics-trap Trap Convention Port 412 udp synoptics-trap Trap Convention Port 413 tcp smsp Storage Management Services Protocol 413 udp smsp Storage Management Services Protocol 414 tcp infoseek InfoSeek 414 udp infoseek InfoSeek 415 tcp bnet BNet 415 udp bnet BNet 416 tcp silverplatter Silverplatter 416 udp silverplatter Silverplatter 417 tcp onmux Onmux 417 udp onmux Onmux 418 tcp hyper-g Hyper-G 418 udp hyper-g Hyper-G 419 tcp ariel1 Ariel 419 udp ariel1 Ariel 420 tcp smpte SMPTE 420 udp smpte SMPTE 420 tcp Breach [trojan] Breach 420 tcp Incognito [trojan] Incognito 421 tcp ariel2 Ariel 421 udp ariel2 Ariel 421 tcp TCPWrappers [trojan] TCP Wrappers 421 tcp TCPWrapperstrojan [trojan] TCP Wrappers trojan 422 tcp ariel3 Ariel 422 udp ariel3 Ariel 423 tcp opc-job-start IBM Operations Planning and Control Start 423 udp opc-job-start IBM Operations Planning and Control Start 424 tcp opc-job-track IBM Operations Planning and Control Track 424 udp opc-job-track IBM Operations Planning and Control Track 425 tcp icad-el ICAD 425 udp icad-el ICAD 426 tcp smartsdp smartsdp 426 udp smartsdp smartsdp 427 tcp svrloc Server Location 427 udp svrloc Server Location 428 tcp ocs_cmu OCS_CMU 428 udp ocs_cmu OCS_CMU 429 tcp ocs_amu OCS_AMU 429 udp ocs_amu OCS_AMU 430 tcp utmpsd UTMPSD 430 udp utmpsd UTMPSD 431 tcp utmpcd UTMPSD 431 udp utmpcd UTMPSD 432 tcp iasd IASD 432 udp iasd IASD 433 tcp nnsp Usenet Network News Transfer 433 udp nnsp Usenet Network News Transfer 434 tcp mobileip-agent MobileIP-Agent 434 udp mobileip-agent MobileIP-Agent 435 tcp mobilip-mn MobileIP-MN 435 udp mobilip-mn MobileIP-MN 436 tcp dna-cml DNA-CML 436 udp dna-cml DNA-CML 437 tcp comscm comscm 437 udp comscm comscm 438 tcp dsfgw dsfgw 438 udp dsfgw dsfgw 439 tcp dasp dasp 439 udp dasp dasp 440 tcp sgcp sgcp 440 udp sgcp sgcp 441 tcp decvms-sysmgt decvms-sysmgt 441 udp decvms-sysmgt decvms-sysmgt 442 tcp cvc_hostd cvc_hostd 442 udp cvc_hostd cvc_hostd 443 tcp https HTTP protocol over TLS/SSL 443 udp https HTTP protocol over TLS/SSL 444 tcp snpp Simple Network Paging Protocol 444 udp snpp Simple Network Paging Protocol 445 tcp Mcft-ds Win2k+ Server Message Block 445 udp Mcft-ds Win2k+ Server Message Block 446 tcp ddm-rdb DDM-RDB 446 udp ddm-rdb DDM-RDB 447 tcp ddm-dfm DDM-RFM 447 udp ddm-dfm DDM-RFM 448 tcp ddm-ssl DDM-SSL 448 udp ddm-ssl DDM-SSL 449 tcp as-servermap AS Server Mapper 449 udp as-servermap AS Server Mapper 450 tcp tserver Computer Supported Telecommunication Applications 450 udp tserver Computer Supported Telecommunication Applications 451 tcp sfs-smp-net Cray Network Semaphore server 451 udp sfs-smp-net Cray Network Semaphore server 452 tcp sfs-config Cray SFS config server 452 udp sfs-config Cray SFS config server 453 tcp creativeserver CreativeServer 453 udp creativeserver CreativeServer 454 tcp contentserver ContentServer 454 udp contentserver ContentServer 455 tcp creativepartnr CreativePartnr 455 udp creativepartnr CreativePartnr 455 tcp FatalConnections [trojan] Fatal Connections 456 tcp macon-tcp macon-tcp 456 udp macon-udp macon-tcp 456 tcp HackersParadise [trojan] Hackers Paradise 457 tcp scohelp scohelp 457 udp scohelp scohelp 458 tcp appleqtc apple quick time 458 udp appleqtc apple quick time 459 tcp ampr-rcmd ampr-rcmd 459 udp ampr-rcmd ampr-rcmd 460 tcp skronk skronk 460 udp skronk skronk 461 tcp datasurfsrv DataRampSrv 461 udp datasurfsrv DataRampSrv 462 tcp datasurfsrvsec DataRampSrvSec 462 udp datasurfsrvsec DataRampSrvSec 463 tcp alpes alpes 463 udp alpes alpes 464 tcp kpasswd kpasswd 464 udp kpasswd kpasswd 465 tcp urd URL Rendesvous Directory for SSM 465 udp igmpv3lite IGMP over UDP for SSM 465 tcp smtps smtp protocol over TLS/SSL (was ssmtp) 465 udp smtps smtp protocol over TLS/SSL (was ssmtp) 466 tcp digital-vrc digital-vrc 466 udp digital-vrc digital-vrc 467 tcp mylex-mapd mylex-mapd 467 udp mylex-mapd mylex-mapd 468 tcp photuris Photuris Key Management 468 udp photuris Photuris Key Management 469 tcp rcp Radio Control Protocol 469 udp rcp Radio Control Protocol 470 tcp scx-proxy scx-proxy 470 udp scx-proxy scx-proxy 471 tcp mondex Mondex 471 udp mondex Mondex 472 tcp ljk-login ljk-login 472 udp ljk-login ljk-login 473 tcp hybrid-pop hybrid-pop 473 udp hybrid-pop hybrid-pop 474 tcp tn-tl-w1 tn-t1-w1 474 udp tn-tl-w2 tn-t1-w2 475 tcp tcpnethaspsrv tcpnethaspsrv 475 udp tcpnethaspsrv tcpnethaspsrv 476 tcp tn-tl-fd1 tn-t1-fd1 476 udp tn-tl-fd1 tn-t1-fd1 477 tcp ss7ns ss7ns 477 udp ss7ns ss7ns 478 tcp spsc spsc 478 udp spsc spsc 479 tcp iafserver iafserver 479 udp iafserver iafserver 480 tcp iafdbase iafdbase 480 udp iafdbase iafdbase 480 tcp loadsrv loadsrv 481 tcp ph Ph service 481 udp ph Ph service 481 tcp dvs dvs 482 tcp bgs-nsi bgs-nsi 482 udp bgs-nsi bgs-nsi 482 udp xlog xlog 483 tcp ulpnet ulpnet 483 udp ulpnet ulpnet 484 tcp integra-sme Integra Software Management Environment 484 udp integra-sme Integra Software Management Environment 485 tcp powerburst Air Soft Power Burst 485 udp powerburst Air Soft Power Burst 486 tcp avian avian 486 udp avian avian 486 tcp sstats sstats 487 tcp saft saft Simple Asynchronous File Transfer 487 udp saft saft Simple Asynchronous File Transfer 488 tcp gss-http gss-http 488 udp gss-http gss-http 489 tcp nest-protocol nest-protocol 489 udp nest-protocol nest-protocol 490 tcp micom-pfs micom-pfs 490 udp micom-pfs micom-pfs 491 tcp go-login go-login 491 udp go-login go-login 492 tcp ticf-1 Transport Independent Convergence for FNA 492 udp ticf-1 Transport Independent Convergence for FNA 493 tcp ticf-2 Transport Independent Convergence for FNA 493 udp ticf-2 Transport Independent Convergence for FNA 494 tcp pov-ray POV-Ray 494 udp pov-ray POV-Ray 495 tcp intecourier intecourier 495 udp intecourier intecourier 496 tcp pim-rp-disc PIM-RP-DISC 496 udp pim-rp-disc PIM-RP-DISC 497 tcp dantz dantz 497 udp dantz dantz 498 tcp siam siam 498 udp siam siam 499 tcp iso-ill ISO ILL Protocol 499 udp iso-ill ISO ILL Protocol 500 tcp isakmp isakmp 500 udp isakmp isakmp 501 tcp stmf STMF 501 udp stmf STMF 502 tcp asa-appl-proto asa-appl-proto 502 udp asa-appl-proto asa-appl-proto 503 tcp intrinsa Intrinsa 503 udp intrinsa Intrinsa 504 tcp citadel citadel 504 udp citadel citadel 505 tcp mailbox-lm mailbox-lm 505 udp mailbox-lm mailbox-lm 506 tcp ohimsrv ohimsrv 506 udp ohimsrv ohimsrv 507 tcp crs crs 507 udp crs crs 508 tcp xvttp xvttp 508 udp xvttp xvttp 509 tcp snare snare 509 udp snare snare 510 tcp fcp FirstClass Protocol 510 udp fcp FirstClass Protocol 510 tcp t0rnkit-sshd [trojan] t0rnkit sshd backdoor 511 tcp passgo PassGo 511 udp passgo PassGo 511 tcp T0rnRootkit [trojan] T0rn Rootkit 512 tcp exec BSD rexecd(icon_cool.gif 512 udp biff biff 512 udp comsat comsat 513 tcp login BSD rlogind(icon_cool.gif 513 udp who BSD rwhod(icon_cool.gif 513 tcp Grlogin [trojan] Grlogin 514 tcp shell BSD rshd(icon_cool.gif 514 udp syslog syslog 514 tcp RPCBackdoor [trojan] RPC Backdoor 515 tcp printer spooler 515 udp printer spooler 515 tcp lpdw0rm [trojan] lpdw0rm 515 tcp Ramen [trojan] Ramen 516 tcp videotex videotex 516 udp videotex videotex 517 tcp talk talk 517 udp talk talk 518 tcp ntalk ntalk 518 udp ntalk ntalk 519 tcp utime unixtime 519 udp utime unixtime 520 tcp efs extended file name server 520 udp route router routed -- RIP 521 tcp ripng ripng 521 udp ripng ripng 522 tcp ulp ULP 522 udp ulp ULP 523 tcp ibm-db2 IBM-DB2 523 udp ibm-db2 IBM-DB2 524 tcp ncp NCP 524 udp ncp NCP 525 tcp timed timeserver 525 udp timed timeserver 526 tcp tempo newdate 526 udp tempo newdate 527 tcp stx Stock IXChange 527 udp stx Stock IXChange 528 tcp custix Customer IXChange 528 udp custix Customer IXChange 529 tcp irc-serv IRC-SERV 529 udp irc-serv IRC-SERV 530 tcp courier rpc 530 udp courier rpc 531 tcp conference chat 531 udp conference chat 531 tcp Net666 [trojan] Net666 531 tcp Rasmin [trojan] Rasmin 532 tcp netnews readnews 532 udp netnews readnews 532 tcp ibm-db2 IBM DB2 admin listener 533 tcp netwall netwall for emergency broadcasts 533 udp netwall netwall for emergency broadcasts 2538 udp vnwk-prapi vnwk-prapi 2539 tcp vsiadmin VSI Admin 2539 udp vsiadmin VSI Admin 2540 tcp lonworks LonWorks 2540 udp lonworks LonWorks 2541 tcp lonworks2 LonWorks2 2541 udp lonworks2 LonWorks2 2542 tcp davinci daVinci 2542 udp davinci daVinci 2543 tcp reftek REFTEK 2543 udp reftek REFTEK 2544 tcp novell-zen Novell ZEN 2545 tcp sis-emt sis-emt 2545 udp sis-emt sis-emt 2546 tcp vytalvaultbrtp vytalvaultbrtp 2546 udp vytalvaultbrtp vytalvaultbrtp 2547 tcp vytalvaultvsmp vytalvaultvsmp 2547 udp vytalvaultvsmp vytalvaultvsmp 2548 tcp vytalvaultpipe vytalvaultpipe 2548 udp vytalvaultpipe vytalvaultpipe 2549 tcp ipass IPASS 2549 udp ipass IPASS 2550 tcp ads ADS 2550 udp ads ADS 2551 tcp isg-uda-server ISG UDA Server 2551 udp isg-uda-server ISG UDA Server 2552 tcp call-logging Call Logging 2552 udp call-logging Call Logging 2553 tcp efidiningport efidiningport 2553 udp efidiningport efidiningport 2554 tcp vcnet-link-v10 VCnet-Link v10 2554 udp vcnet-link-v10 VCnet-Link v10 2555 tcp compaq-wcp Compaq WCP 2555 tcp Lion [trojan] Lion 2555 tcp T0rnRootkit [trojan] T0rn Rootkit 2555 udp compaq-wcp Compaq WCP 2556 tcp nicetec-nmsvc nicetec-nmsvc 2556 udp nicetec-nmsvc nicetec-nmsvc 2557 tcp nicetec-mgmt nicetec-mgmt 2557 udp nicetec-mgmt nicetec-mgmt 2558 tcp pclemultimedia PCLE Multi Media 2558 udp pclemultimedia PCLE Multi Media 2559 tcp lstp LSTP 2559 udp lstp LSTP 2560 tcp labrat labrat 2560 udp labrat labrat 2561 tcp mosaixcc MosaixCC 2561 udp mosaixcc MosaixCC 2562 tcp delibo Delibo 2562 udp delibo Delibo 2563 tcp cti-redwood CTI Redwood 2563 udp cti-redwood CTI Redwood 2564 tcp hp-3000-telnet HP 3000 NS VT block mode telnet 2565 tcp coord-svr Coordinator Server 2565 tcp Striker [trojan] Striker 2565 tcp Strikertrojan [trojan] Striker trojan 2565 udp coord-svr Coordinator Server 2566 tcp pcs-pcw pcs-pcw 2566 udp pcs-pcw pcs-pcw 2567 tcp clp Cisco Line Protocol 2567 udp clp Cisco Line Protocol 2568 tcp spamtrap SPAM TRAP 2568 udp spamtrap SPAM TRAP 2569 tcp sonuscallsig Sonus Call Signal 2569 udp sonuscallsig Sonus Call Signal 2570 tcp hs-port HS Port 2570 udp hs-port HS Port 2571 tcp cecsvc CECSVC 2571 udp cecsvc CECSVC 2572 tcp ibp IBP 2572 udp ibp IBP 2573 tcp trustestablish Trust Establish 2573 udp trustestablish Trust Establish 2574 tcp blockade-bpsp Blockade BPSP 2574 udp blockade-bpsp Blockade BPSP 2575 tcp hl7 HL7 2575 udp hl7 HL7 2576 tcp tclprodebugger TCL Pro Debugger 2576 udp tclprodebugger TCL Pro Debugger 2577 tcp scipticslsrvr Scriptics Lsrvr 2577 udp scipticslsrvr Scriptics Lsrvr 2578 tcp rvs-isdn-dcp RVS ISDN DCP 2578 udp rvs-isdn-dcp RVS ISDN DCP 2579 tcp mpfoncl mpfoncl 2579 udp mpfoncl mpfoncl 2580 tcp tributary Tributary 2580 udp tributary Tributary 2581 tcp argis-te ARGIS TE 2581 udp argis-te ARGIS TE 2582 tcp argis-ds ARGIS DS 2582 udp argis-ds ARGIS DS 2583 tcp mon MON 2583 tcp WinCrash [trojan] WinCrash 2583 tcp WinCrash [trojan] WinCrash 2583 udp mon MON 2584 tcp cyaserv cyaserv 2584 udp cyaserv cyaserv 2585 tcp netx-server NETX Server 2585 udp netx-server NETX Server 2586 tcp netx-agent NETX Agent 2586 udp netx-agent NETX Agent 2587 tcp masc MASC 2587 udp masc MASC 2588 tcp privilege Privilege 2588 udp privilege Privilege 2589 tcp Dagger [trojan] Dagger 2589 tcp quartus-tcl quartus tcl 2589 udp quartus-tcl quartus tcl 2590 tcp idotdist idotdist 2590 udp idotdist idotdist 2591 tcp maytagshuffle Maytag Shuffle 2591 udp maytagshuffle Maytag Shuffle 2592 tcp netrek netrek 2592 udp netrek netrek 2593 tcp mns-mail MNS Mail Notice Service 2593 udp mns-mail MNS Mail Notice Service 2594 tcp dts Data Base Server 2594 udp dts Data Base Server 2595 tcp worldfusion1 World Fusion 1 2595 udp worldfusion1 World Fusion 1 2596 tcp worldfusion2 World Fusion 2 2596 udp worldfusion2 World Fusion 2 2597 tcp homesteadglory Homestead Glory 2597 udp homesteadglory Homestead Glory 2598 tcp citriximaclient Citrix MA Client 2598 udp citriximaclient Citrix MA Client 2599 tcp meridiandata Meridian Data 2599 udp meridiandata Meridian Data 2600 tcp DigitalRootBeer [trojan] Digital RootBeer 2600 tcp DigitalRootBeer [trojan] Digital RootBeer 2600 tcp hpstgmgr HPSTGMGR 2600 tcp zebrasrv zebra service 2600 udp hpstgmgr HPSTGMGR 2601 tcp discp-client discp client 2601 tcp zebra zebra vty 2601 udp discp-client discp client 2602 tcp discp-server discp server 2602 tcp ripd RIPd vty 2602 udp discp-server discp server 2603 tcp ripngd RIPngd vty 2603 tcp servicemeter Service Meter 2603 udp servicemeter Service Meter 2604 tcp nsc-ccs NSC CCS 2604 tcp ospfd OSPFd vty 2604 udp nsc-ccs NSC CCS 2605 tcp bgpd BGPd vty 2605 tcp nsc-posa NSC POSA 2605 udp nsc-posa NSC POSA 2606 tcp netmon Dell Netmon 2606 udp netmon Dell Netmon 2607 tcp connection Dell Connection 2607 udp connection Dell Connection 2608 tcp wag-service Wag Service 2608 udp wag-service Wag Service 2609 tcp system-monitor System Monitor 2609 udp system-monitor System Monitor 2610 tcp versa-tek VersaTek 2610 udp versa-tek VersaTek 2611 tcp lionhead LIONHEAD 2611 udp lionhead LIONHEAD 2612 tcp qpasa-agent Qpasa Agent 2612 udp qpasa-agent Qpasa Agent 2613 tcp smntubootstrap SMNTUBootstrap 2613 udp smntubootstrap SMNTUBootstrap 2614 tcp neveroffline Never Offline 2614 udp neveroffline Never Offline 2615 tcp firepower firepower 2615 udp firepower firepower 2616 tcp appswitch-emp appswitch-emp 2616 udp appswitch-emp appswitch-emp 2617 tcp cmadmin Clinical Context Managers 2617 udp cmadmin Clinical Context Managers 2618 tcp priority-e-com Priority E-Com 2618 udp priority-e-com Priority E-Com 2619 tcp bruce bruce 2619 udp bruce bruce 2620 tcp lpsrecommender LPSRecommender 2620 udp lpsrecommender LPSRecommender 2621 tcp miles-apart Miles Apart Jukebox Server 2621 udp miles-apart Miles Apart Jukebox Server 2622 tcp metricadbc MetricaDBC 2622 udp metricadbc MetricaDBC 2623 tcp lmdp LMDP 2623 udp lmdp LMDP 2624 tcp aria Aria 2624 udp aria Aria 2625 tcp blwnkl-port Blwnkl Port 2625 udp blwnkl-port Blwnkl Port 2626 tcp gbjd816 gbjd816 2626 udp gbjd816 gbjd816 2626 tcp ap-defender AP Defender 2627 tcp moshebeeri Moshe Beeri 2627 tcp webster Network dictionary 2627 udp moshebeeri Moshe Beeri 2627 udp webster Network dictionary 2628 tcp dict DICT 2628 udp dict DICT 2629 tcp sitaraserver Sitara Server 2629 udp sitaraserver Sitara Server 2630 tcp sitaramgmt Sitara Management 2630 udp sitaramgmt Sitara Management 2631 tcp sitaradir Sitara Dir 2631 udp sitaradir Sitara Dir 2632 tcp irdg-post IRdg Post 2632 udp irdg-post IRdg Post 2633 tcp interintelli InterIntelli 2633 udp interintelli InterIntelli 2634 tcp pk-electronics PK Electronics 2634 udp pk-electronics PK Electronics 2635 tcp backburner Back Burner 2635 udp backburner Back Burner 2636 tcp solve Solve 2636 udp solve Solve 2637 tcp imdocsvc Import Document Service 2637 udp imdocsvc Import Document Service 2638 tcp sybase Sybase database 2638 udp sybaseanywhere Sybase Anywhere 2639 tcp aminet AMInet 2639 udp aminet AMInet 2640 tcp sai_sentlm Sabbagh Associates Licence Manager 2640 udp sai_sentlm Sabbagh Associates Licence Manager 2641 tcp hdl-srv HDL Server 2641 udp hdl-srv HDL Server 2642 tcp tragic Tragic 2642 udp tragic Tragic 2643 tcp gte-samp GTE-SAMP 2643 udp gte-samp GTE-SAMP 2644 tcp travsoft-ipx-t Travsoft IPX Tunnel 2644 udp travsoft-ipx-t Travsoft IPX Tunnel 2645 tcp novell-ipx-cmd Novell IPX CMD 2645 udp novell-ipx-cmd Novell IPX CMD 2646 tcp and-lm AND Licence Manager 2646 udp and-lm AND License Manager 2647 tcp syncserver SyncServer 2647 udp syncserver SyncServer 2648 tcp upsnotifyprot Upsnotifyprot 2648 udp upsnotifyprot Upsnotifyprot 2649 tcp vpsipport VPSIPPORT 2649 udp vpsipport VPSIPPORT 2650 tcp eristwoguns eristwoguns 2650 udp eristwoguns eristwoguns 2651 tcp ebinsite EBInSite 2651 udp ebinsite EBInSite 2652 tcp interpathpanel InterPathPanel 2652 udp interpathpanel InterPathPanel 2653 tcp sonus Sonus 2653 udp sonus Sonus 2654 tcp corel_vncadmin Corel VNC Admin 2654 udp corel_vncadmin Corel VNC Admin 2655 tcp unglue UNIX Nt Glue 2655 udp unglue UNIX Nt Glue 2656 tcp kana Kana 2656 udp kana Kana 2657 tcp sns-dispatcher SNS Dispatcher 2657 udp sns-dispatcher SNS Dispatcher 2658 tcp sns-admin SNS Admin 2658 udp sns-admin SNS Admin 2659 tcp sns-query SNS Query 2659 udp sns-query SNS Query 2660 tcp gcmonitor GC Monitor 2660 udp gcmonitor GC Monitor 2661 tcp olhost OLHOST 2661 udp olhost OLHOST 2662 tcp bintec-capi BinTec-CAPI 2662 udp bintec-capi BinTec-CAPI 2663 tcp bintec-tapi BinTec-TAPI 2663 udp bintec-tapi BinTec-TAPI 2664 tcp patrol-mq-gm Patrol for MQ GM 2664 udp patrol-mq-gm Patrol for MQ GM 2665 tcp patrol-mq-nm Patrol for MQ NM 2665 udp patrol-mq-nm Patrol for MQ NM 2666 tcp extensis extensis 2666 udp extensis extensis 2667 tcp alarm-clock-s Alarm Clock Server 2667 udp alarm-clock-s Alarm Clock Server 2668 tcp alarm-clock-c Alarm Clock Client 2668 udp alarm-clock-c Alarm Clock Client 2669 tcp toad TOAD 2669 udp toad TOAD 2670 tcp tve-announce TVE Announce 2670 udp tve-announce TVE Announce 2671 tcp newlixreg newlixreg 2671 udp newlixreg newlixreg 2672 tcp nhserver nhserver 2672 udp nhserver nhserver 2673 tcp firstcall42 First Call 42 2673 udp firstcall42 First Call 42 2674 tcp ewnn ewnn 2674 udp ewnn ewnn 2675 tcp ttc-etap TTC ETAP 2675 udp ttc-etap TTC ETAP 2676 tcp simslink SIMSLink 2676 udp simslink SIMSLink 2677 tcp gadgetgate1way Gadget Gate 1 Way 2677 udp gadgetgate1way Gadget Gate 1 Way 2678 tcp gadgetgate2way Gadget Gate 2 Way 2678 udp gadgetgate2way Gadget Gate 2 Way 2679 tcp syncserverssl Sync Server SSL 2680 tcp pxc-sapxom pxc-sapxom 2680 udp pxc-sapxom pxc-sapxom 2681 tcp mpnjsomb mpnjsomb 2681 udp mpnjsomb mpnjsomb 2682 tcp srsp SRSP 2682 udp srsp SRSP 2683 tcp ncdloadbalance NCDLoadBalance 2683 udp ncdloadbalance NCDLoadBalance 2684 tcp mpnjsosv mpnjsosv 2684 udp mpnjsosv mpnjsosv 2685 tcp mpnjsocl mpnjsocl 2685 udp mpnjsocl mpnjsocl 2686 tcp mpnjsomg mpnjsomg 2686 udp mpnjsomg mpnjsomg 2687 tcp pq-lic-mgmt pq-lic-mgmt 2687 udp pq-lic-mgmt pq-lic-mgmt 2688 tcp md-cg-http md-cf-http 2688 udp md-cg-http md-cf-http 2689 tcp fastlynx FastLynx 2689 udp fastlynx FastLynx 2690 tcp hp-nnm-data HP NNM Embedded Database 2690 udp hp-nnm-data HP NNM Embedded Database 2691 tcp itinternet IT Internet 2691 udp itinternet IT Internet 2692 tcp admins-lms Admins LMS 2692 udp admins-lms Admins LMS 2693 tcp belarc-http belarc-http 2693 udp belarc-http belarc-http 2694 tcp pwrsevent pwrsevent 2694 udp pwrsevent pwrsevent 2695 tcp vspread VSPREAD 2695 udp vspread VSPREAD 2696 tcp unifyadmin Unify Admin 2696 udp unifyadmin Unify Admin 2697 tcp oce-snmp-trap Oce SNMP Trap Port 2697 udp oce-snmp-trap Oce SNMP Trap Port 2698 tcp mck-ivpip MCK-IVPIP 2698 udp mck-ivpip MCK-IVPIP 2699 tcp csoft-plusclnt Csoft Plus Client 2699 udp csoft-plusclnt Csoft Plus Client 2700 tcp tqdata tqdata 2700 udp tqdata tqdata 2701 tcp sms-rcinfo SMS RCINFO 2701 udp sms-rcinfo SMS RCINFO 2702 tcp BlackDiver [trojan] Black Diver 2702 tcp sms-xfer SMS XFER 2702 udp sms-xfer SMS XFER 2703 tcp sms-chat SMS CHAT 2703 udp sms-chat SMS CHAT 2704 tcp sms-remctrl SMS REMCTRL 2704 udp sms-remctrl SMS REMCTRL 2705 tcp sds-admin SDS Admin 2705 udp sds-admin SDS Admin 2706 tcp ncdmirroring NCD Mirroring 2706 udp ncdmirroring NCD Mirroring 2707 tcp emcsymapiport EMCSYMAPIPORT 2707 udp emcsymapiport EMCSYMAPIPORT 2708 tcp banyan-net Banyan-Net 2708 udp banyan-net Banyan-Net 2709 tcp supermon Supermon 2709 udp supermon Supermon 2710 tcp sso-service SSO Service 2710 udp sso-service SSO Service 2711 tcp sso-control SSO Control 2711 udp sso-control SSO Control 2712 tcp aocp Axapta Object Communication Protocol 2712 udp aocp Axapta Object Communication Protocol 2713 tcp raven1 Raven1 2713 udp raven1 Raven1 2714 tcp raven2 Raven2 2715 tcp hpstgmgr2 HPSTGMGR2 2715 udp hpstgmgr2 HPSTGMGR2 2716 tcp inova-ip-disco Inova IP Disco 2716 tcp ThePrayer [trojan] The Prayer 2716 tcp ThePrayer [trojan] The Prayer 2716 udp inova-ip-disco Inova IP Disco 2717 tcp pn-requester PN REQUESTER 2717 udp pn-requester PN REQUESTER 2718 tcp pn-requester2 PN REQUESTER 2 2718 udp pn-requester2 PN REQUESTER 2 2719 tcp scan-change Scan & Change 2719 udp scan-change Scan & Change 2720 tcp wkars wkars 2720 udp wkars wkars 2721 tcp smart-diagnose Smart Diagnose 2721 udp smart-diagnose Smart Diagnose 2722 tcp proactivesrvr Proactive Server 2722 udp proactivesrvr Proactive Server 2723 tcp watchdognt WatchDog NT 2723 udp watchdognt WatchDog NT 2724 tcp qotps qotps 2724 udp qotps qotps 2725 tcp msolap-ptp2 MSOLAP PTP2 2725 udp msolap-ptp2 MSOLAP PTP2 2726 tcp tams TAMS 2726 udp tams TAMS 2727 tcp mgcp-callagent Media Gateway Control Protocol Call Agent 2727 udp mgcp-callagent Media Gateway Control Protocol Call Agent 2728 tcp sqdr SQDR 2728 udp sqdr SQDR 2729 tcp tcim-control TCIM Control 2729 udp tcim-control TCIM Control 2730 tcp nec-raidplus NEC RaidPlus 2730 udp nec-raidplus NEC RaidPlus 2731 tcp netdragon-msngr NetDragon Messanger 2731 udp netdragon-msngr NetDragon Messanger 2732 tcp g5m G5M 2732 udp g5m G5M 2733 tcp signet-ctf Signet CTF 2733 udp signet-ctf Signet CTF 2734 tcp ccs-software CCS Software 2734 udp ccs-software CCS Software 2735 tcp netiq-mc NetIQ Monitor Console 2735 udp netiq-mc NetIQ Monitor Console 2736 tcp radwiz-nms-srv RADWIZ NMS SRV 2736 udp radwiz-nms-srv RADWIZ NMS SRV 2737 tcp srp-feedback SRP Feedback 2737 udp srp-feedback SRP Feedback 2738 tcp ndl-tcp-ois-gw NDL TCP-OSI Gateway 2738 udp ndl-tcp-ois-gw NDL TCP-OSI Gateway 2739 tcp tn-timing TN Timing 2739 udp tn-timing TN Timing 2740 tcp alarm Alarm 2740 udp alarm Alarm 2741 tcp tsb TSB 2741 udp tsb TSB 2742 tcp tsb2 TSB2 2742 udp tsb2 TSB2 2743 tcp murx murx 2743 udp murx murx 2744 tcp honyaku honyaku 2744 udp honyaku honyaku 2745 tcp urbisnet URBISNET 2745 udp urbisnet URBISNET 2746 tcp cpudpencap CPUDPENCAP 2746 udp cpudpencap CPUDPENCAP 2747 tcp fjippol-swrly 2747 udp fjippol-swrly 2748 tcp fjippol-polsvr 2748 udp fjippol-polsvr 2749 tcp fjippol-cnsl 2749 udp fjippol-cnsl 2750 tcp fjippol-port1 2750 udp fjippol-port1 2751 tcp fjippol-port2 2751 udp fjippol-port2 2752 tcp rsisysaccess RSISYS ACCESS 2752 udp rsisysaccess RSISYS ACCESS 2753 tcp de-spot de-spot 2753 udp de-spot de-spot 2754 tcp apollo-cc APOLLO CC 2754 udp apollo-cc APOLLO CC 2755 tcp expresspay Express Pay 2755 udp expresspay Express Pay 2756 tcp simplement-tie simplement-tie 2756 udp simplement-tie simplement-tie 2757 tcp cnrp CNRP 2757 udp cnrp CNRP 2758 tcp apollo-status APOLLO Status 2758 udp apollo-status APOLLO Status 2759 tcp apollo-gms APOLLO GMS 2759 udp apollo-gms APOLLO GMS 2760 tcp sabams Saba MS 2760 udp sabams Saba MS 2761 tcp dicom-iscl DICOM ISCL 2761 udp dicom-iscl DICOM ISCL 2762 tcp dicom-tls DICOM TLS 2762 udp dicom-tls DICOM TLS 2763 tcp desktop-dna Desktop DNA 2763 udp desktop-dna Desktop DNA 2764 tcp data-insurance Data Insurance 2764 udp data-insurance Data Insurance 2765 tcp qip-audup qip-audup 2765 udp qip-audup qip-audup 2766 tcp compaq-scp Compaq SCP 2766 tcp listen System V listener port 2766 tcp nlps Solaris Print Services 2766 udp compaq-scp Compaq SCP 2767 tcp uadtc UADTC 2767 udp uadtc UADTC 2768 tcp uacs UACS 2768 udp uacs UACS 2769 tcp singlept-mvs Single Point MVS 2769 udp singlept-mvs Single Point MVS 2770 tcp veronica Veronica 2770 udp veronica Veronica 2771 tcp vergencecm Vergence CM 2771 udp vergencecm Vergence CM 2772 tcp auris auris 2772 udp auris auris 2773 tcp pcbakcup1 PC Backup 2773 tcp SubSeven2.1Gold [trojan] SubSeven 2.1 Gold 2773 tcp SubSeven [trojan] SubSeven 2773 tcp SubSeven [trojan] SubSeven 2773 udp pcbakcup1 PC Backup 2774 tcp pcbakcup2 PC Backup 2774 tcp SubSeven2.1Gold [trojan] SubSeven 2.1 Gold 2774 tcp SubSeven [trojan] SubSeven 2774 udp pcbakcup2 PC Backup 2775 tcp smpp SMMP 2775 udp smpp SMMP 2776 tcp ridgeway1 Ridgeway Systems & Software 2776 udp ridgeway1 Ridgeway Systems & Software 2777 tcp ridgeway2 Ridgeway Systems & Software 2777 udp ridgeway2 Ridgeway Systems & Software 2778 tcp gwen-sonya Gwen-Sonya 2778 udp gwen-sonya Gwen-Sonya 2779 tcp lbc-sync LBC Sync 2779 udp lbc-sync LBC Sync 2780 tcp lbc-control LBC Control 2780 udp lbc-control LBC Control 2781 tcp whosells ResolveNet IOM whosells 2781 udp whosells ResolveNet IOM whosells 2782 tcp everydayrc everydayrc 2782 udp everydayrc everydayrc 2783 tcp aises AISES 2783 udp aises AISES 2784 tcp www-dev world wide web - development 2784 udp www-dev world wide web - development 2785 tcp aic-np aic-np 2785 udp aic-np aic-np 2786 tcp aic-oncrpc aic-oncrpc - Destiny MCD database 2786 udp aic-oncrpc aic-oncrpc - Destiny MCD database 2787 tcp piccolo piccolo - Cornerstone Software 2787 udp piccolo piccolo - Cornerstone Software 10 Reasons websites get hacked
10 Reasons websites get hacked Below you will find a list of top 10 web vulnerabilities. Here is also description of the problem and some examples. 1. Cross site scripting (XSS) The problem: The ?most prevalent and pernicious? Web application security vulnerability, XSS flaws happen when an application sends user data to a Web browser without first validating or encoding the content. This lets hackers execute malicious scripts in a browser, letting them hijack user sessions, deface Web sites, insert hostile content and conduct phishing and malware attacks. Attacks are usually executed with JavaScript, letting hackers manipulate any aspect of a page. In a worst-case scenario, a hacker could steal information and impersonate a user on a bank?s Web site, according to Snyder. Real-world example: PayPal was targeted last year when attackers redirected PayPal visitors to a page warning users their accounts had been compromised. Victims were redirected to a phishing site and prompted to enter PayPal login information, Social Security numbers and credit card details. PayPal said it closed the vulnerability in June 2006. How to protect users: Use a whitelist to validate all incoming data, which rejects any data that?s not specified on the whitelist as being good. This approach is the opposite of blacklisting, which rejects only inputs known to be bad. Additionally, use appropriate encoding of all output data. ?Validation allows the detection of attacks, and encoding prevents any successful script injection from running in the browser,? OWASP says. 2. Injection flaws The problem: When user-supplied data is sent to interpreters as part of a command or query, hackers trick the interpreter ? which interprets text-based commands ? into executing unintended commands. ?Injection flaws allow attackers to create, read, update, or delete any arbitrary data available to the application,? OWASP writes. ?In the worst-case scenario, these flaws allow an attacker to completely compromise the application and the underlying systems, even bypassing deeply nested firewalled environments.? Real-world example: Russian hackers broke into a Rhode Island government Web site to steal credit card data in January 2006. Hackers claimed the SQL injection attack stole 53,000 credit card numbers, while the hosting service provider claims it was only 4,113. How to protect users: Avoid using interpreters if possible. ?If you must invoke an interpreter, the key method to avoid injections is the use of safe APIs, such as strongly typed parameterized queries and object relational mapping libraries,? OWASP writes. 3. Malicious file execution The problem: Hackers can perform remote code execution, remote installation of rootkits, or completely compromise a system. Any type of Web application is vulnerable if it accepts filenames or files from users. The vulnerability may be most common with PHP, a widely used scripting language for Web development. Real-world example: A teenage programmer discovered in 2002 that Guess.com was vulnerable to attacks that could steal more than 200,000 customer records from the Guess database, including names, credit card numbers and expiration dates. Guess agreed to upgrade its information security the next year after being investigated by the Federal Trade Commission. How to protect users: Don?t use input supplied by users in any filename for server-based resources, such as images and script inclusions. Set firewall rules to prevent new connections to external Web sites and internal systems. 4. Insecure direct object reference The problem: Attackers manipulate direct object references to gain unauthorized access to other objects. It happens when URLs or form parameters contain references to objects such as files, directories, database records or keys. Banking Web sites commonly use a customer account number as the primary key, and may expose account numbers in the Web interface. ?References to database keys are frequently exposed,? OWASP writes. ?An attacker can attack these parameters simply by guessing or searching for another valid key. Often, these are sequential in nature.? Real-world example: An Australian Taxation Office site was hacked in 2000 by a user who changed a tax ID present in a URL to access details on 17,000 companies. The hacker e-mailed the 17,000 businesses to notify them of the security breach. How to protect users: Use an index, indirect reference map or another indirect method to avoid exposure of direct object references. If you can?t avoid direct references, authorize Web site visitors before using them 5. Cross site request forgery The problem: ?Simple and devastating,? this attack takes control of victim?s browser when it is logged onto a Web site, and sends malicious requests to the Web application. Web sites are extremely vulnerable, partly because they tend to authorize requests based on session cookies or ?remember me? functionality. Banks are potential targets. ?Ninety-nine percent of the applications on the Internet are susceptible to cross site request forgery,? Williams says. ?Has there been an actual exploit where someone?s lost money? Probably the banks don?t even know. To the bank, all it looks like is a legitimate transaction from a logged-in user.? Real-world example: A hacker known as Samy gained more than a million ?friends? on MySpace.com with a worm in late 2005, automatically including the message ?Samy is my hero? in thousands of MySpace pages. The attack itself may not have been that harmful, but it was said to demonstrate the power of combining cross site scripting with cross site request forgery. Another example that came to light one year ago exposed a Google vulnerability allowing outside sites to change a Google user?s language preferences. How to protect users: Don?t rely on credentials or tokens automatically submitted by browsers. ?The only solution is to use a custom token that the browser will not ?remember,?? OWASP writes. 6. Information leakage and improper error handling The problem: Error messages that applications generate and display to users are useful to hackers when they violate privacy or unintentionally leak information about the program?s configuration and internal workings. ?Web applications will often leak information about their internal state through detailed or debug error messages. Often, this information can be leveraged to launch or even automate more powerful attacks,? OWASP says. Real-world example: Information leakage goes well beyond error handling, applying also to breaches occurring when confidential data is left in plain sight. The ChoicePoint debacle in early 2005 thus falls somewhere in this category. The records of 163,000 consumers were compromised after criminals pretending to be legitimate ChoicePoint customers sought details about individuals listed in the company?s database of personal information. ChoicePoint subsequently limited its sales of information products containing sensitive data. How to protect users: Use a testing tool such as OWASP?S WebScarab Project to see what errors your application generates. ?Applications that have not been tested in this way will almost certainly generate unexpected error output,? OWASP writes. 7. Broken authentication and session management The problem: User and administrative accounts can be hijacked when applications fail to protect credentials and session tokens from beginning to end. Watch out for privacy violations and the undermining of authorization and accountability controls. ?Flaws in the main authentication mechanism are not uncommon, but weaknesses are more often introduced through ancillary authentication functions such as logout, password management, timeout, remember me, secret question and account update,? OWASP writes. Real-world example: Microsoft had to eliminate a vulnerability in Hotmail that could have let malicious JavaScript programmers steal user passwords in 2002. Revealed by a networking products reseller, the flaw was vulnerable to e-mails containing Trojans that altered the Hotmail user interface, forcing users to repeatedly reenter their passwords and unwittingly send them to hackers. How to protect users: Communication and credential storage has to be secure. The SSL protocol for transmitting private documents should be the only option for authenticated parts of the application, and credentials should be stored in hashed or encrypted form. Another tip: get rid of custom cookies used for authentication or session management. 8. Insecure cryptographic storage The problem: Many Web developers fail to encrypt sensitive data in storage, even though cryptography is a key part of most Web applications. Even when encryption is present, it?s often poorly designed, using inappropriate ciphers. ?These flaws can lead to disclosure of sensitive data and compliance violations,? OWASP writes. Real-world example: The TJX data breach that exposed 45.7 million credit and debit card numbers. A Canadian government investigation faulted TJX for failing to upgrade its data encryption system before it was targeted by electronic eavesdropping starting in July 2005. How to protect users: Don?t invent your own cryptographic algorithms. ?Only use approved public algorithms such as AES, RSA public key cryptography, and SHA-256 or better for hashing,? OWASP advises. Furthermore, generate keys offline, and never transmit private keys over insecure channels. 9. Insecure communications The problem: Similar to No. 8, this is a failure to encrypt network traffic when it?s necessary to protect sensitive communications. Attackers can access unprotected conversations, including transmissions of credentials and sensitive information. For this reason, PCI standards require encryption of credit card information transmitted over the Internet. Real-world example: TJX again. Investigators believe hackers used a telescope-shaped antenna and laptop computer to steal data exchanged wirelessly between portable price-checking devices, cash registers and store computers, the Wall Street Journal reported. ?The $17.4-billion retailer's wireless network had less security than many people have on their home networks,? the Journal wrote. TJX was using the WEP encoding system, rather than the more robust WPA. How to protect users: Use SSL on any authenticated connection or during the transmission of sensitive data, such as user credentials, credit card details, health records and other private information. SSL or a similar encryption protocol should also be applied to client, partner, staff and administrative access to online systems. Use transport layer security or protocol level encryption to protect communications between parts of your infrastructure, such as Web servers and database systems. 10. Failure to restrict URL access The problem: Some Web pages are supposed to be restricted to a small subset of privileged users, such as administrators. Yet often there?s no real protection of these pages, and hackers can find the URLs by making educated guesses. Say a URL refers to an ID number such as ?123456.? A hacker might say ?I wonder what?s in 123457?? Williams says. The attacks targeting this vulnerability are called forced browsing, ?which encompasses guessing links and brute force techniques to find unprotected pages,? OWASP says. Real-world example: A hole on the Macworld Conference & Expo Web site this year let users get ?Platinum? passes worth nearly $1,700 and special access to a Steve Jobs keynote speech, all for free. The flaw was code that evaluated privileges on the client but not on the server, letting people grab free passes via JavaScript on the browser, rather than the server. How to protect users: Don?t assume users will be unaware of hidden URLs. All URLs and business functions should be protected by an effective access control mechanism that verifies the user?s role and privileges. ?Make sure this is done ? every step of the way, not just once towards the beginning of any multi-step process,? OWASP advises March 19 MAC spoofing using windows platformMAC spoofing using windows platform Every Network Interface Card (NIC) on any platform has unique MAC address that used to access Ethernet networks. The MAC address is hard coded by the network card manufacturer and on many security systems used as a platform identity for network access permission. Using the MAC address of a platform with network permission rights by an intruder or malicious software instead of its original address called MAC spoofing. MAC address network access control MAC address spoofing Changing MAC address Clearing MAC address March 14 Hardening Linux Links
March 11 Footprintingwget www.maxis.com.my wget www.icq.com cat index.html | more grep "href=" index.html grep "href=" index.html | cut -d"/" -f3 grep "href=" index.html | cut -d"/" -f3 |grep icq.com grep "href=" index.html | cut -d"/" -f3 |grep icq.com | cut -d'"' -f1 grep "href=" index.html | cut -d"/" -f3 |grep icq.com | cut -d'"' -f1 |sort -u grep "href=" index.html | cut -d"/" -f3 |grep icq.com | cut -d'"' -f1 |sort -u >icqservers.com cd /pentest/enu/list-urls/ create a bash file > findips.sh #!/bin/bash ./findips.sh > icqips.txt cat icqips.txt February 24 MPLS Interesting labsFebruary 18 US Democratic Candidate Race
 
My Day with MPLSDear Friends,
Welcome to my spaces
January 09 MCT SUMMIT 2008 SingaporeWELCOME RECEPTION Dear Attendee, Kindly RSVP if you will be attending the MCT SUMMIT WELCOME RECEPTION to be held at the Level 10 Foyer, M Hotel. Many thanks. Sabrina December 30 Target Sites to findDecember 28 Certification CrazeDear Friends,
The year 2007 is ending. The year 2008 is starting. Let start this year around with some serious commitment on attaining at least 5 premier certification before it comes to an end.
As per myself, I have geared up for Microsoft 2008 titles, CISA,CISM,CISSP, CCIE, RHCE and CWNA.
All those who have not taken any exam do cantact me for a planner. I am also conducting classes on weekends for those wishing to sit for exams.
I have some of my friends who are finding it difficult to climb the corporate ladder in their respective organisation just because they lack certification.
You see, certification is a just mean to judge and value a person's years of knowledge in their field.
Do not shy away from it.
Hope all of you guys, a Great Happy New Year and all the best in your life.
Cheers. December 21 Windows Vista Live is GreatDear friends,
Long time never had time to write in the blog. Well Hope next coming year will be great year. All the best, Happy New Year, Kamalsk. October 28 Welcome to my BlogDear Friends,
Welcome to my blog. If you have any question post it and email it to me.
Thanks,
kamalsk. October 27 Bookmarks in GoogleBookmarks
|
|
|
