> -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Gabriel L. Somlo > Sent: Thursday, December 04, 2003 4:48 PM > To: [EMAIL PROTECTED] > Subject: [Full-Disclosure] Re: Nachi Worm > > I just use nmap to scan for machines listening on tcp port > 707. Very few false positives, good scaling: > > nmap -sS -p707 -oG - AAA.BBB.0.0/16 | grep 'Ports: 707/open/tcp' \ > | cut -d' ' -f2 \ > | sort -t. -k3,3n -k4,4n \ > | mail -s "Nachi > suspects" [EMAIL PROTECTED] > And *that* is why I love Unix. :-)
Paul Schmehl ([EMAIL PROTECTED]) Adjunct Information Security Officer The University of Texas at Dallas AVIEN Founding Member http://www.utdallas.edu/~pauls/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
