On my firewall, I see the following result of netstat -a.
The telnet is really ssh, so don't worry there: I just have ssh listen
on port 23 so I can get through my company firewall to home.
I'm wondering if anyone can help me understand whether the other stuff
poses a risk. My interpretation is that since they're not listening,
they must be outgoing, and so they're probably not a problem. But
maybe I'm just confused.
Tia.
-Jeff
ps: The internal interface is called gw.purple.com, the external
puddle.purple.com.
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign
Address State
tcp 0 0
*:telnet *:* LISTEN
tcp 0 0
*:ssh *:* LISTEN
udp 0 0 gw.purple.com.0.168:ntp
*:*
udp 0 0
puddle.purple.com:ntp *:*
udp 0 0
localhost:ntp *:*
udp 0 0
*:ntp *:*
raw 0 0
*:icmp *:* 7
raw 0 0
*:tcp *:* 7
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags Type State I-Node Path
unix 1 [ ] STREAM CONNECTED 498914 @000000c6
unix 0 [ ACC ] STREAM LISTENING 512196 /dev/log
unix 1 [ ] STREAM CONNECTED 653 @00000015
unix 1 [ ] STREAM CONNECTED 649 @00000014
unix 1 [ ] STREAM CONNECTED 496 @00000003
unix 1 [ ] STREAM CONNECTED 498915 /dev/log
unix 1 [ ] STREAM CONNECTED 654 /dev/log
unix 1 [ ] STREAM CONNECTED 650 /dev/log
unix 1 [ ] STREAM CONNECTED 497 /dev/log
--
Jeff
Jeff Abrahamson <http://www.purple.com/jeff/>
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug