monitoring opened sockets - Programmers Heaven

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Categories

Welcome to the new platform of Programmer's Heaven! We apologize for the inconvenience caused, if you visited us from a broken link of the previous version. The main reason to move to a new platform is to provide more effective and collaborative experience to you all. Please feel free to experience the new platform and use its exciting features. Contact us for any issue that you need to get clarified. We are more than happy to help you.

monitoring opened sockets

Is there a way to monitor an opened socket and write everything to a file?

example: I telneted to aardwolf.net port 4000. Now, i want to moitor every information

passing through this connection. (note that i didn't use any program other than

telnet to make the connection)

Any idea how to achieve that?


Comments

  • tedlancastertedlancaster Posts: 2Member
    Posted on 19 Jul 2000 at 11:56 AM by Kevin
    kevin wrote:-
    : Is there a way to monitor an opened socket and write everything to a
    : file?
    :example: I telneted to aardwolf.net port 4000. Now, i want
    : to monitor every information passing through this connection.
    : (note that i didn't use any program other than telnet to make
    : the connection)
    Any idea how to achieve that?
    -------------------------------------------
    [b] I am the owner and webmaster of aardwolf.net. I would like to know who the poster of the above message is, (Kevin), why he is opening and monitoring sockets on my domain, what threat this poses to my security and what measures I should take against this. Any help would be gratefully appreciated.[/b]
  • zibadianzibadian Posts: 6,349Member
    : Posted on 19 Jul 2000 at 11:56 AM by Kevin
    : kevin wrote:-
    : : Is there a way to monitor an opened socket and write everything to a
    : : file?
    : :example: I telneted to aardwolf.net port 4000. Now, i want
    : : to monitor every information passing through this connection.
    : : (note that i didn't use any program other than telnet to make
    : : the connection)
    : Any idea how to achieve that?
    : -------------------------------------------
    : [b] I am the owner and webmaster of aardwolf.net. I would like to
    : know who the poster of the above message is, (Kevin), why he is
    : opening and monitoring sockets on my domain, what threat this poses
    : to my security and what measures I should take against this. Any
    : help would be gratefully appreciated.[/b]
    :
    The easiest way to handle this is to close all unnecessary ports in your firewall. You should also filter all incoming protocols to allow only the ones the server handles.
    As for the threat: that depends on the access Kevin has. Based on the fact that you run IIS as a server, he has a lot of access through the server. The IIS runs more or less as a system service, meaning that he can pontentially take over your server. If he can also upload malicious code, then he can not only form a threat to you, but to other sites as well, because he can use your server as a zombie to attack others. A much better server is the free apache, which can run under a very limited user account, thereby reducing the threat to your server-computer.
  • tedlancastertedlancaster Posts: 2Member

    : :
    : The easiest way to handle this is to close all unnecessary ports in
    : your firewall. You should also filter all incoming protocols to
    : allow only the ones the server handles.
    : As for the threat: that depends on the access Kevin has. Based on
    : the fact that you run IIS as a server, he has a lot of access
    : through the server. The IIS runs more or less as a system service,
    : meaning that he can pontentially take over your server. If he can
    : also upload malicious code, then he can not only form a threat to
    : you, but to other sites as well, because he can use your server as a
    : zombie to attack others. A much better server is the free apache,
    : which can run under a very limited user account, thereby reducing
    : the threat to your server-computer.

    Thank you for your prompt and helpful reply. I have contacted hosting service and await their comments.


Sign In or Register to comment.