Originally posted here by doktorf00bar
Owned by root and root being logged on are 2 diiferent animals.
Good point.

But to answer your question completely, a portscan wont tell who is logged in, unless you find a nice finger server misconfigured to allow null requests, or something similar


That answers my question then.

thanks