> In that case you could always download a copy of lsof and compile it
> locally.
>
> lsof == (literally) LiSt Open Files
>
> With the -i switch it doesn't just show open ports, it shows the files
> opened by the processes which have those ports open. It's a *lot* more
> verbose that netstat, but in some cases I find it a whole load more useful.
> Especially when I suspect there's something Not Quite Right with a machine
> and something's hiding from me...
>
> Again though as mentioned by Steve Werby, it might be a little difficult to
> find an RPM for this. Use the source :)
>
I usually use the RH6.2 RPM. It's available at
ftp://ftp.redhat.com/redhat/redhat-6.2-en/os/i386/RedHat/RPMS/lsof-4.47-2.i386.rpm
and worked great for me so far. A lot quicker to check the box if you're
suspicious. Also, because of the amount of data lsof produces, piping it to
less or grep or both is highly recommended. :-)
Regards,
Felix
PS: Remember that Cobalt Linux on the RaQ3/4 is based off of RedHat 6.x, so
many RH6.x RPMs work on it.
--
-----------------------------------------------------
Felix Schueren, Technology Services Manager (Germany)
eMail: [EMAIL PROTECTED]
ONE-2-ONE Advertising + Telecommunications GmbH
** Part of Host Europe Group **
Theodor-Heuss-Str. 92-100, 51149 Koeln, Germany
Telefon (01805) 6632-66 Telefax (01805) 6632-33
[EMAIL PROTECTED] http://www.hosteurope.de
Geschaeftsfuehrer: Mike Behrendt, Abby Hardoon,
Frank Rejwan. HR-Eintrag: AG Koeln, HRB 28495
_______________________________________________
cobalt-security mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-security
