what? unkown? service? hmmm

[Guest]

WARNING: identscan (-I) no longer supported. Ignoring -I

Starting nmap 3.75 ( http://www.insecure.org/nmap/ ) at 2004-12-01 17:37 CET
Interesting ports on localhost.localdomain (127.0.0.1):
(The 65531 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 3.8.1p1 (protocol 2.0)
80/tcp open http Apache httpd 2.0.52 ((Debian GNU/Linux))
111/tcp open rpcbind (rpcbind V2) 2 (rpc #100000)
860/tcp open unknown
Device type: general purpose
Running: Linux 2.4.X|2.5.X|2.6.X
OS details: Linux 2.5.25 - 2.6.3 or Gentoo 1.2 Linux 2.4.19 rc1-rc7)
Uptime 3.384 days (since Sun Nov 28 08:24:26 2004)

Nmap run completed -- 1 IP address (1 host up) scanned in 9.214 secon

[Guest]

WARNING: identscan (-I) no longer supported. Ignoring -I

Starting nmap 3.75 ( http://www.insecure.org/nmap/ ) at 2004-12-01 17:37 CET
Interesting ports on localhost.localdomain (127.0.0.1):
(The 65531 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 3.8.1p1 (protocol 2.0)
80/tcp open http Apache httpd 2.0.52 ((Debian GNU/Linux))
111/tcp open rpcbind (rpcbind V2) 2 (rpc #100000)
860/tcp open unknown
Device type: general purpose
Running: Linux 2.4.X|2.5.X|2.6.X
OS details: Linux 2.5.25 - 2.6.3 or Gentoo 1.2 Linux 2.4.19 rc1-rc7)
Uptime 3.384 days (since Sun Nov 28 08:24:26 2004)

Nmap run completed -- 1 IP address (1 host up) scanned in 9.214 secon

I just nmaped myself, I found out that "860/tcp open unkown"
open is, but I don't know what it's used for, how can I find
out what service is using it?

[Jeroen]

as root, run:

Code: Select all

netstat -tnlp | grep 860 

You can run netstat -tlp or netstat -tlnp to see about all open TCP ports -- no need to nmap yourself! You can then also see for who they are open -- all, only localhost, etc.

drop the 't' flag to see also udp and unix domain sockets, see "man netstat" for more info about the netstat program.