Solved

netstat

Posted on 1998-08-02
3
628 Views
Last Modified: 2013-12-23
When I do a netstat command I see several established
connections on my box.  I allowed a kid full access (big
mistake) so he could do a bot.  I find that as superuser and
logged in remote I cannot do a reboot.  How can I kill these
connections off ?
0
Comment
Question by:fm
3 Comments
 
LVL 3

Expert Comment

by:elfie
ID: 1583066
Not all connections need to be remote connections.
In general killing connections, means that will need to kill some services(deamon processes).
Most of the local connections will be re-established, once the deamon process is running again.
You can check your /etc/rc files to see which services are started. You can disabled them by putting them in comment (Also verify /etc/inittab)

0
 
LVL 1

Expert Comment

by:mohammedg
ID: 1583067
What type of Unix are you running ?
And when you say that you allowed full access, does that mean that you gave full root
permissions to that user?
0
 
LVL 2

Accepted Solution

by:
JYoungman earned 50 total points
ID: 1583068
You can use identd (rfc 1413) queries to find out
who the processes belong to, and often what their PID is.

Alternatively you could add an entry to the routing table for the particular host to which the unwanted data is directed, to make sure it fails to get there (or use firewall output rules if your box is BSD or Linux based).


I'm very surprised that you can't do a reboot from a remote machine.  What does "shutdown" say when it refuses? You are running it as root, yes?


0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question