I currently work for a company that manages the internet connections of about 1200 hotels across the US. My job requires me to answer support calls and do basic troubleshooting on our severs installed in hotels.

When I started working at the company I noticed a large amount of spam coming into our mail boxes from the company exchange server. This of course is annoying and makes my day just a little more misrable then it has to be. I decided to start doing a personal audit of our companys security and found
port 4444 sitting open on our companys exchange server.

Our company runs linux/open bsd on most of its equipment with cisco equipment linking it all. It looks like a solid setup from my probeing but this port really bothers me.

How do I determine exactly what is going on here with the open port on the server... every port list I have consulted says that this is a known port for RATs and if this server has been "owned" then every other server in the network is in trouble. If this really is a problem I need to know how to let my company know in a way which is going to get their attention. The managers I have made aware about this have shown little to no intrest and I think something is being missed.

Anyone been here before?

FN-