TCP/IP Protocol Search Result
| Protocol/Port | UDP/0 |
|---|---|
| Description | fw_scan - This can be used crash certain firewalls as shown here: http://www.nessus.org/plugins/index.php?view=single&id=10074 Certain Cisco devices (i.e. routers) would log the protocol port as 0 when they deny a package (even though the original request was not for port 0). *** Note: This protocol has been used in attacks |
| Protocol/Port | UDP/21 |
| Description | fsp - fspd - File Service Protocol - http://research.cem.itesm.mx/raulm/teaching/cc/final/fin-cc.html
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/23 |
| Description | telnet - Telnet RFC 854 ***
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/25 |
| Description | smtp - Simple Mail Transfer Protocol, RFC 821 Risks of having this protocol opened: - email relay - denial of service against the SMTP server - various vulnerabilities in SMTP servers (i.e. Sendmail) - allowing internal users outgoing SMTP may allow them to bypass the internal email system and use unauthorized email servers *** Note: This protocol has been used in attacks |
| Protocol/Port | TCP/40 |
| Description | mc - Midnight Commander-Sometimes access FTP servers running at this port. MC is a utility much like Norton Commander. It shows a hierarchy of files and allows the user to easily browse through the file system. Midnight Commander contains the added ability to traverse .tar files and remote file systems like FTP servers and HTTP servers. It also contains a little server using RPC that helps manage remote browsing of NFS servers.
Note: This protocol has been used in attacks |
| Protocol/Number | IP/47 |
| Description | gre - GRE (General Routing Encapsulation) protocol used by PPTP (Point-to-Point Tunneling Protocol) see http://www.gnatbox.com/Pages/text/draft-ietf-pppext-pptp-01.txt
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/47 |
| Description | ni-ftp - NI FTP (Network Independence FTP) - http://www.isi.edu/in-notes/ien/ien99.txt
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/58 |
| Description | virus - DMSetup - See http://www.geocities.com/SiliconValley/Heights/3652/dmsetup.html
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/80 |
| Description | http - World Wide Web HTTP (Hypertext Transfer Protocol). Specifications can be found at the World Wide Web Consortium's site, www.w3.org Risks of allowing this TCP/IP protocol: - vulnerable web servers may be compromized by intruders or viruses/worms - may expose the type of operating system - improperly configured web servers may expose sensitive information - vulnerabilities in supporting application may compromize the data (i.e SQL injection) *** Note: This protocol has been used in attacks |
| Protocol/Port | TCP/81 |
| Description | http-alt - World Wide Web HTTP alternate port ***
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/98 |
| Description | linuxconf - Some Linux distributions ship with linuxconf which listens on (HTTP daemon included as part of the "linuxconf" package for remote administration) ***
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/124 |
| Description | secureid - SecureID v1 (Security Dynamics Client/Server Protocol) - http://www.homeport.org/~adam/dimacs.html ***
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/213 |
| Description | bm-vpn - Novell Border Manager VPN Master/Slave (IPX/TCP) (http://www.novell.com/documentation/lg/bordr/docui/index.html)
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/280 |
| Description | http-mgmt - Many network vendors are beginning to provide http management access to their devices. Some of those vendors are using a default port of 280. The netmon process (part of HP OpenView/NNM) checks this port as part of its discovery and configuration checking process or when a demand poll is done.
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/353 |
| Description | bm-vpn-auth - Novell Border Manager VPN Client Authentication (http://www.novell.com/documentation/lg/bordr/docui/index.html)
Note: This protocol has been used in attacks |
| Protocol/Port | UDP/370 |
| Description | securecast1 - Outgoing packets to NAI's servers, http://www.nai.com/asp_set/anti_virus/alerts/faq.asp
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/371 |
| Description | clearcase - Clearcase - ClearCase source control system from Rational software. ClearCase is based on NFS. See http://www.clearcase.com/
Note: This protocol has been used in attacks |
| Protocol/Port | UDP/371 |
| Description | securecast2 - Incoming packets from NAI's servers, http://www.nai.com/asp_set/anti_virus/alerts/faq.asp
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/384 |
| Description | arns - A Remote Network Server System (http://www.cs.mu.oz.au/appletalk/doc/MacUAR.userDoc.html)
Note: This protocol has been used in attacks |
| Protocol/Port | TCP/443 |
| Description | https - http protocol over TLS/SSL
Note: This protocol has been used in attacks |
| Send us comments about this protocol! | |
| Search for "Protocol TCP HTTP" at: Google - Bing - Microsoft - Yahoo - Metacrawler | |
Subscribe to EventID.Net now!