Metasploit mailing list archives

Using sudo as root

From: Cristian Livadaru <cristian () livadaru net>
Date: Sun, 29 Jan 2012 12:46:36 +0100

I was searching google for the nmap error "Traceroute does not support idle or connect scan" 
and found this message:

Em 20-01-2012 14:14, Danux escreveu:


When you switch to root account did you use "su " or "su -". Make Sure 
to use the latest.

I use BackTrack 5 R1 with default root account. So i don't switch users. 
It was my fault when i didn't specified that before hand. But i'll keep 
that in mind in other distros.
Thanks


My .2 cents.

Sent from Danux's Network

El 20/01/2012 02:27, "Jonathan Cran" <jcran at 0x0e.org 
<mailto:jcran at 0x0e.org>> escribió:


    Hey HaZ -- works here (both root and sudo) with a recent nmap svn.

     -A is run all scripts, os detection, version detection, script
    scanning and output - this definitely requires root

    I'd suggest checking the nmap list
    (http://cgi.insecure.org/mailman/listinfo/nmap-dev), or ping the
    authors through the mechanism they specify in the book.

I guess i'll try to search for an answer in the nmap-dev list. I used 
the command inside the msfconsole. I'll try outside it and try to figure 
it out. Thanks :)



    jcran


Em 20-01-2012 12:39, Patrick Webster escreveu:

http://seclists.org/nmap-dev/2008/q1/192 ?

Not exactly, i guess. I've found that out before writting on the 
mailling list. Thanks anyway :)

-Patrick


And again, thanks for all the answers. Maybe it's a permission bug 
associated with using this command inside the msfconsole.

--haZ


it has nothing to do with permissions! When starting nmap from the msfconsole with sudo, you end up with diferent 
environment settings and it starts a different version of NMAP ! 
I assume you have done this: 

root@root:~# cd /opt/framework/msf3/
root@root:/opt/framework/msf3# msfconsole 
...SNIP...

msf >  nmap -sT -A --script=smb-check-vulns -P0 192.168.1.136
[*] exec:  nmap -sT -A --script=smb-check-vulns -P0 192.168.1.136


Starting Nmap 5.51SVN ( http://nmap.org ) at 2012-01-29 06:43 EST
Traceroute does not support idle or connect scan
QUITTING!
msf > 
******************

now try starting msfconsole from /opt/framework/msf3/

root@root:/opt/framework/msf3# ./msfconsole 
....SNIP....

msf > nmap -sT -A --script=smb-check-vulns -P0 192.168.1.136
[*] exec: nmap -sT -A --script=smb-check-vulns -P0 192.168.1.136


Starting Nmap 5.59BETA1 ( http://nmap.org ) at 2012-01-29 06:45 EST
Nmap scan report for 192.168.1.136
Host is up (0.00060s latency).
Not shown: 997 closed ports
PORT    STATE SERVICE     VERSION

as you can see, the first call uses Nmap 5.51SVN which doesn't work, the second one uses 5.59BETA1 which works! hope 
this helps. 


Cris 
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework

Current thread:

Using sudo as root haZard0us (Jan 19)
- Re: Using sudo as root Jonathan Cran (Jan 20)
  - Re: Using sudo as root Patrick Webster (Jan 20)
  - Re: Using sudo as root Danux (Jan 20)
    - Re: Using sudo as root haZard0us (Jan 22)
    - Re: Using sudo as root cons0ul (Feb 09)
    - Re: Using sudo as root jambunathan sadasivamiyer (Feb 10)
    - Database Joshua Smith (Feb 11)
    - Re: Database jambunathan sadasivamiyer (Feb 12)
- <Possible follow-ups>
- Using sudo as root Cristian Livadaru (Jan 29)
  - Re: Using sudo as root Tod Beardsley (Jan 29)