| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
Dave Nebinger wrote: |
| 5 |
|
| 6 |
>On Monday 17 October 2005 02:00 pm, Dave Nebinger wrote: |
| 7 |
> |
| 8 |
>>So I'm busy tracking down a tcp connection issue on my server and I see |
| 9 |
>>that *.shell is open (not a good thing). |
| 10 |
>> |
| 11 |
>>So I do the 'netstat -pl' command to see who has that socket open and, low |
| 12 |
>>and behold, it happens to be syslog-ng. |
| 13 |
> |
| 14 |
> |
| 15 |
>My bad. Forgot that under tcp 544 is shell, but under udp 544 is syslog. I |
| 16 |
>had both tcp and udp open, which is why shell port was open. |
| 17 |
> |
| 18 |
>Dave |
| 19 |
|
| 20 |
Actually, the port is 514 by default, which for TCP is the rsh/rlogin |
| 21 |
(remote shell/login) port and UDP is the syslog port. When you do a |
| 22 |
netstat it resolves the names for the ports based on what's in |
| 23 |
/etc/services. There may be a reason you would want to run syslog-ng |
| 24 |
in TCP mode, which would show up as *.shell. But I guess you figured |
| 25 |
out you don't need TCP syslog. ;-) |
| 26 |
|
| 27 |
- -- |
| 28 |
gentux |
| 29 |
echo "hfouvyAdpy/ofu" | perl -pe 's/(.)/chr(ord($1)-1)/ge' |
| 30 |
|
| 31 |
gentux's gpg fingerprint ==> 34CE 2E97 40C7 EF6E EC40 9795 2D81 924A |
| 32 |
6996 0993 |
| 33 |
-----BEGIN PGP SIGNATURE----- |
| 34 |
Version: GnuPG v1.4.1 (GNU/Linux) |
| 35 |
|
| 36 |
iD8DBQFDU+p/LYGSSmmWCZMRAj0rAKCObOFvK/Rjxh3eO58pM97M9h+Z3ACgwRZA |
| 37 |
7WzdJhAPNeO0LhC2qWq69Yc= |
| 38 |
=wZg2 |
| 39 |
-----END PGP SIGNATURE----- |
| 40 |
|
| 41 |
-- |
| 42 |
gentoo-user@g.o mailing list |
Archives