[mythtv-users] pcHDTV.com defaced AGAIN
Jason Gabriele
jason.gabriele at gmail.com
Wed Dec 22 19:23:53 UTC 2004
>]# nmap -sS pchdtv.com
>
>Starting nmap 3.48 ( http://www.insecure.org/nmap/ ) at 2004-12-22
>10:51 EST
>Interesting ports on powell.slcinet.net (128.121.217.18):
>(The 1635 ports scanned but not shown below are in state: closed)
>PORT STATE SERVICE
...
First off it's phpbb thats causing the problems. They need to keep phpBB
up to date. Second, you can't tell that the server is insecure just by
running that simple nmap command. NMap just returns areas of interest so
you can look into them further. It says aol but it's just reporting what
services are known to run on that port. For example I run my mythweb
apache server on port 1234, which nmap reports as "hotline". Many of
those services are required for most websites like http/https, ftp, ssh,
and pop3. Just because those apps are running doesn't mean the server is
insecure. They could have a firewall running and those are the open
ports (they might want to firewall mysql, however). Sorry if this is
getting too OT.
--
Jason Gabriele
jason.gabriele at gmail dot com
More information about the mythtv-users
mailing list