[mythtv-users] pcHDTV.com defaced AGAIN

Jason Gabriele jason.gabriele at gmail.com
Wed Dec 22 19:23:53 UTC 2004


 >]# nmap -sS pchdtv.com
 >
 >Starting nmap 3.48 ( http://www.insecure.org/nmap/ ) at 2004-12-22 
 >10:51 EST
 >Interesting ports on powell.slcinet.net (128.121.217.18):
 >(The 1635 ports scanned but not shown below are in state: closed)
 >PORT     STATE SERVICE
...

First off it's phpbb thats causing the problems. They need to keep phpBB 
up to date. Second, you can't tell that the server is insecure just by 
running that simple nmap command. NMap just returns areas of interest so 
you can look into them further. It says aol but it's just reporting what 
services are known to run on that port. For example I run my mythweb 
apache server on port 1234, which nmap reports as "hotline". Many of 
those services are required for most websites like http/https, ftp, ssh, 
and pop3. Just because those apps are running doesn't mean the server is 
insecure. They could have a firewall running and those are the open 
ports (they might want to firewall mysql, however). Sorry if this is 
getting too OT.

-- 
Jason Gabriele
jason.gabriele at gmail dot com


More information about the mythtv-users mailing list