Appendix A. TCP, UDP Ports, and ICMP Message Types
I list useful TCP, UDP ports, and ICMP message types in this appendix. There exist a small number of remotely exploitable network services I don’t cover in the book, but list here—for example, the Solaris dtspcd service on port 6112 and the X font server on port 7100.
A comprehensive list of registered TCP and UDP services may be found at http://www.iana.org/assignments/port-numbers. The nmap-services list of ports provided with nmap is also a good reference, particularly for backdoors and other unregistered services.
TCP Ports
TCP ports of interest from a remote security assessment perspective are listed in Table A-1. I have included references to chapters within this book, along with other details that I deem appropriate, including MITRE CVE references to known issues.
Port | Name | Notes |
1 | tcpmux | TCP port multiplexer, indicates the host is running IRIX |
11 | systat | System status service; see Chapter 5 |
15 | netstat | Network status service; see Chapter 5 |
21 | ftp | File Transfer Protocol (FTP) service; see Chapter 8 |
22 | ssh | Secure Shell (SSH); see Chapter 7 |
23 | telnet | Telnet service; see Chapter 7 |
25 | smtp | Simple Mail Transfer Protocol (SMTP); see Chapter 10 |
42 | wins | Microsoft WINS name service |
43 | whois | WHOIS service; see Chapter 3 |
53 | domain | Domain Name Service (DNS); see Chapter 5 |
79 | finger | Finger service, used to report active users; see Chapter 5 |
80 | http | Hypertext Transfer Protocol (HTTP); see Chapter 6 |
81 | proxy-alt | Alternate web proxy ... |
Get Network Security Assessment now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
