Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: Port 109 scanning
From: azimuth <lozah () io com>
Date: Mon, 6 Nov 2000 17:34:26 CST
Howdy,

They're not necessarily looking to exploit POP2.  By developing a list of
systems running POP2, they can go back and look for something more tasty.
 A system running POP2 is one sign of an ill-configured & neglected Linux
box ... as is one listening to port 98 (linuxconf).  If you build a list
of systems running one of those services, chances are strong the systems
are running more commonly exploited services.
Much more profitable to use this technique than, say, scanning for every
FTP server in the world looking for vulnerable versions of WU-FTP.

my $.02,
cheers,
az

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]