Penetration Testing mailing list archives

Re: [PEN-TEST] ports

From: "Frasnelli, Dan" <dfrasnel () COREWAR COM>
Date: Thu, 7 Sep 2000 12:03:06 -0400

but it is not complete.  Specifically, I am trying to find out what runs
on ports 6010 and 6011 on linux boxes.


x11               6010/tcp              # x window system
x11               6010/udp              # x window system
x11               6011/tcp              # x window system
x11               6011/udp              # x window system


A bit busy at the moment, so hopefully this 'quick' explanation
is sufficient.

When you enable X11 forwarding with ssh, each session is allocated
a unique display - typically starting at :1 or :10.  These
displays correspond to ports 6001 and 6010, respectively.

Just some trivia you may not know about X11 forwarding:
- the X11 traffic is not sent through an encrypted channel
- a remote user can 'spy' on an ssh session under certain
  circumstances by reading off those ports (ie. xkey).

-dan

Current thread:

[PEN-TEST] ports Dale, C (Sep 06)
- Re: [PEN-TEST] ports Erik Tayler (Sep 06)
- Re: [PEN-TEST] ports Work, Clinton (Sep 06)
- Re: [PEN-TEST] ports Security (Sep 06)
- Re: [PEN-TEST] ports j a s o n (Sep 07)
  - Re: [PEN-TEST] ports Frasnelli, Dan (Sep 07)
    - Re: [PEN-TEST] ports Frasnelli, Dan (Sep 08)
  - Re: [PEN-TEST] ports Andrew Brown (Sep 09)
    - Re: [PEN-TEST] ports Fred Mobach (Sep 11)
- <Possible follow-ups>
- Re: [PEN-TEST] ports Meritt, Jim (Sep 06)
  - Re: [PEN-TEST] ports Teicher, Mark (Sep 06)
- Re: [PEN-TEST] ports Dunker, Noah (Sep 06)
  - Re: [PEN-TEST] ports martin (Sep 07)
- Re: [PEN-TEST] ports Mark Thomsen (Sep 07)
- Re: [PEN-TEST] ports ATTN! Chris's new address is chris_devoney () ziffdavis com (Sep 07)
- Re: [PEN-TEST] ports Fernando Cardoso (Sep 07)