Re: Port 1443

To:	pen-test@securityfocus.com
Subject:	Re: Port 1443
From:	"Jamie Riden" <jamesr@europe.com>
Date:	Sat, 23 Dec 2006 08:14:28 +1300
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
Domainkey-signature:	a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=pSlhU7kHKlesouKrUI94FcDmP/Xz07okFzcJDuOxHQlHObuZIl1KVJZlSd2mgw3Z1TVdnCjEbdjizbKopw4TAZCQ2OJXDp5VH7fOplvXPBifLcx36gb03TA62gF3/FeBDXPalJwTKrkXSM8TOoSvKv3+vzmObeOJRfUWsEdKxhc=
In-reply-to:	<3286d67f0612220040o5fa61659jfc4cd696a9c2afe3@mail.gmail.com>
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<AF8132ACAA0A2647B0172F4D8C2DF30F0996CA83@mad00mp9.dot.state.wi.us> <17b0fcab0612212000y50a027efu89c9b3fa7adbc7cf@mail.gmail.com> <17b0fcab0612212015r5bb5c1aem3dd7aa7d82e32949@mail.gmail.com> <3286d67f0612220040o5fa61659jfc4cd696a9c2afe3@mail.gmail.com>
Resent-date:	Fri, 22 Dec 2006 11:27:14 -0700 (MST)
Resent-from:	pen-test-return-1078483320@securityfocus.com
Resent-message-id:	<20061222182714.3E3B5237967@outgoing3.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com
Sender:	jamie.riden@gmail.com

On 22/12/06, Lee Lawson <leejlawson@gmail.com> wrote:

Right, let's get this clear now.  The question was "what service runs
on 1443".  This is not the 1433 and 1434 that MS SQL server runs on.

A quick search on the neohapsis port listing reveals:
1443 tcp ies-lm Integrated Engineering Software
1443 udp ies-lm Integrated Engineering Software


The OP already knew this I think - however I generally find you can't
make an accurate guess from the port number.

I expected better than the answers given from this mailing list.


Here are 3 things I found on Google:

http://www.agentrics.com/solutions/techreqs.html
http://www.cscare.com/TrapConsole/downloads/readme.txt
http://www.sarc.com/avcenter/venc/data/backdoor.homutex.html

So from a very small sample, I'd be more inclined to suspect that it's
being chosen in analogy with port 443 - that is an alternate HTTPS
port. But that's only a guess which is worth about as much as the
electrons it's printed on.

cheers,
Jamie
--
Jamie Riden, CISSP / jamesr@europe.com / jamie.riden@gmail.com
NZ Honeynet project - http://www.nz-honeynet.org/

<Prev in Thread]	Current Thread	[Next in Thread>
Port 1443, kapil assudani RE: Port 1443, Andy Meyers Re: Port 1443, Dan Catalin Vasile Re: Port 1443, Alcides Re: Port 1443, Mark Foster RE: Port 1443, Richards, Jim Message not available Re: Port 1443, Jamie Riden Re: Port 1443, Lee Lawson Re: Port 1443, Jamie Riden <=

Previous by Date:	Re: Pen-test Freesshd 1.10, Jamie Riden
Next by Date:	VINA eLink-208, Dave
Previous by Thread:	Re: Port 1443, Lee Lawson
Next by Thread:	SinFP 2.06, now works under big-endian architectures, GomoR
Indexes:	[Date] [Thread] [Top] [All Lists]