Security Basics mailing list archives
RE: Port 80 open without WebServer
From: "Hamish Stanaway" <koremeltdown () hotmail com>
Date: Fri, 02 Jul 2004 08:09:06 +0000
Hi there,It is my understanding that many web browsers operate on a local port 80. This means that not only do they connect to the web server on port 80, but open port 80 on your own machine. This might explain why your port 80 is open. Do the audit again and makesure you have no web browsers open at any stage of the audit, then see what happens - you might just find that port 80 is closed.
Kindest of regards, Hamish Stanaway Absolute Web Hosting / -= KoRe WoRkS Internet Security Owner/Operator Auckland New Zealand http://www.webhosting.net.nz http://www.buywebhosting.co.nz http://www.koreworms.com
From: Paulo <listassec () yahoo com> To: security-basics () securityfocus com Subject: Port 80 open without WebServer Date: Wed, 30 Jun 2004 04:24:24 -0700 (PDT) MIME-Version: 1.0Received: from outgoing2.securityfocus.com ([205.206.231.26]) by mc1-f10.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Thu, 1 Jul 2004 22:23:16 -0700 Received: from lists.securityfocus.com (lists.securityfocus.com [205.206.231.19])by outgoing2.securityfocus.com (Postfix) with QMQPid CB289143A17; Wed, 30 Jun 2004 21:24:21 -0600 (MDT)Received: (qmail 841 invoked from network); 30 Jun 2004 11:17:40 -0000 X-Message-Info: JGTYoYF78jEiHs3Kjt0vSrZjPyv3DnpM Mailing-List: contact security-basics-help () securityfocus com; run by ezmlm Precedence: bulk List-Id: <security-basics.list-id.securityfocus.com> List-Post: <mailto:security-basics () securityfocus com> List-Help: <mailto:security-basics-help () securityfocus com> List-Unsubscribe: <mailto:security-basics-unsubscribe () securityfocus com> List-Subscribe: <mailto:security-basics-subscribe () securityfocus com> Delivered-To: mailing list security-basics () securityfocus com Delivered-To: moderator for security-basics () securityfocus com Message-ID: <20040630112424.61903.qmail () web53306 mail yahoo com>Return-Path: security-basics-return-29070-koremeltdown=hotmail.com () securityfocus com X-OriginalArrivalTime: 02 Jul 2004 05:23:16.0794 (UTC) FILETIME=[ADEE21A0:01C45FF4]Hi, I runned the Nessus on a Redhat/Conectiva 9 and i received the alert: Security Note: Port: www-http (80/tcp). I don't runnig http server (apache) and in netstat -anp don't show port 80. I run also chkrootkit and it detect nothing. I run clamav and it detect nothing too. Anyone can help me? Thanks __________________________________ Do you Yahoo!? New and Improved Yahoo! Mail - Send 10MB messages! http://promotions.yahoo.com/new_mail --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-fieldpen testing experience in our state of the art hacking lab. Master the skillsof an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
_________________________________________________________________Is your PC infected? Get a FREE online computer virus scan from McAfee® Security. http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
---------------------------------------------------------------------------Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------
Current thread:
- Re: Port 80 open without WebServer, (continued)
- Re: Port 80 open without WebServer David Roman Esteban (Jul 05)
- Re: Port 80 open without WebServer Javier Larrea Jaspe (Jul 01)
- Re: Port 80 open without WebServer Carlos Bergero (Jul 01)
- Re: Port 80 open without WebServer mike (Jul 01)
- recommended honeynet configuration steve (Jul 06)
- Re: recommended honeynet configuration Florian Streck (Jul 06)
- recommended honeynet configuration steve (Jul 06)
- Re: Port 80 open without WebServer Hemil (Jul 05)
- Re: Port 80 open without WebServer Paul Kurczaba (Jul 05)
- RE: Port 80 open without WebServer BANIER Jeremie (Jul 01)
- Re: Port 80 open without WebServer pingywon MCSE (Jul 05)
- RE: Port 80 open without WebServer Hamish Stanaway (Jul 05)
- Re: Port 80 open without WebServer Ivan Coric (Jul 05)
- Re: Port 80 open without WebServer Marcus Taylor (Jul 06)
- RE: Port 80 open without WebServer Thomas48 (Jul 06)
- Fw: Port 80 open without WebServer Todd . Bailey (Jul 05)
- Re: Port 80 open without WebServer Webb Wang CS (Jul 05)
- RE: Port 80 open without WebServer Fernando Serto (Jul 13)