Security Incidents mailing list archives

RE: win2k server issue

From: "McCammon, Keith" <Keith.McCammon () eadvancemed com>
Date: Fri, 28 Jun 2002 08:54:29 -0400

Port 6667 is used for all kinds of nasty IRC backdoors, DDoS agents, etc.  Just search Google for "tcp port 6667 
malicious" or similar strings and you'll come up with hundreds of incidents and what not.  

I wouldn't even worry about the binary.  Spend that time hardening your system, and you'll be better off down the road.

Cheers

Keith

-----Original Message-----
From: RUSSELL T. LEWIS [mailto:RUSSELL_T._LEWIS () spectralresponse com]
Sent: Thursday, June 27, 2002 4:53 PM
To: incidents () securityfocus com
Subject: win2k server issue




----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com

Current thread:

win2k server issue RUSSELL T. LEWIS (Jun 27)
- Re: win2k server issue H C (Jun 28)
- RE: win2k server issue Kit (Jun 28)
- <Possible follow-ups>
- RE: win2k server issue McCammon, Keith (Jun 28)