[arch-security] strange netstat connections after having opened Firefox

Remi Gacogne rgacogne at archlinux.org
Fri Dec 4 17:02:02 UTC 2015

Hi Elmar,

> tcp        0      0 TIME_WAIT   -
> tcp        0      0 TIME_WAIT   -
> tcp        0      0 TIME_WAIT   -
> tcp        0      0 TIME_WAIT   -
> tcp        0      0 TIME_WAIT   -
> tcp        0      0 TIME_WAIT   -

These connections are in TIME_WAIT, indicating that the connection has
been closed by your host but are kept alive by the kernel for the
duration of the TIME_WAIT interval to be properly handle any TCP still
in-flight somewhere, see [1] for more details. The fact that the
connections have no associated program is because the TIME_WAIT state is
handled by the kernel, and from the application point of view, they do
not exist anymore.
You can see that the connections were to TCP/80 and TCP/443, so very
likely caused by Firefox connecting to HTTP/HTTPS servers before you
closed it.

You'll be fine.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <https://lists.archlinux.org/pipermail/arch-security/attachments/20151204/18cd7e06/attachment.asc>

More information about the arch-security mailing list