I list useful TCP, UDP ports, and ICMP message types in this appendix. A comprehensive list of registered TCP and UDP services may be found at http://www.iana.org/assignments/port-numbers. The nmap-services list of ports provided with Nmap is also a good reference, particularly for backdoors and other unregistered services.
TCP ports of interest from a remote security assessment perspective are listed in Table A-1. I have included references to chapters within this book, along with other details that I deem appropriate, including MITRE CVE references to known issues.
TCP port multiplexer, indicates the host is running IRIX
System status service
Network status service
File Transfer Protocol (FTP) service; see Chapter 8
Secure Shell (SSH); see Chapter 8
Telnet service; see Chapter 8
Simple Mail Transfer Protocol (SMTP); see Chapter 11
Microsoft WINS name service; see Chapter 5
WHOIS service; see Chapter 3
Domain Name Service (DNS); see Chapter 5
Finger service, used to report active users; see Chapter 5
Hypertext Transfer Protocol (HTTP); see Chapter 6
Kerberos distributed authentication mechanism
Linuxconf service, remotely exploitable under older Linux distributions; see CVE-2000-0017
Post Office Protocol 2 (POP2), rarely used
Post Office Protocol 3 (POP3); ...