Nmap Development mailing list archives
bounce scan failure
From: Phani Kumar <phani () lantana tenet res in>
Date: Fri, 27 Feb 2004 19:03:27 +0530 (IST)
I am using Red Hat 8 and configured vsftpd on it. When executing nmap bounce scan, I got the result as: Host (10.6.21.1) appears to be up ... good. Attempting connection to ftp://anonymous:@xxx.xxx.xxx.xxx:21 Connected:220 ready, dude (vsFTPd 1.1.0: beat me, break me) sent username, received: 331 Please specify the password. sent password, received: 230 Login successful. Have fun. Initiating TCP ftp bounce scan against (10.6.21.1) result of port query on port 22: 500 Illegal PORT command. Your ftp bounce server doesn't allow priviliged ports, skipping them. Command: PORT 10,6,21,1,0,22 And you didn't want to scan any unpriviliged ports. Giving up. But I configured vsftpd to access all the privileged ports. My /etc/vsftpd.conf file is shown below: anonymous_enable=YES local_enable=YES local_umask=022 dirmessage_enable=YES xferlog_enable=YES connect_from_port_20=YES xferlog_std_format=YES pam_service_name=vsftpd pasv_enable=YES pasv_promiscuous=YES pasv_max_port=65500 pasv_min_port=1 I actually have to get positive result from nmap as port 22 of 10.6.21.1 is open. But its not. Can anyone explain why it is? Should I change any configuration of vsftpd to make nmap get positive result on this bounce scan? I would really be thankful if anyone helped me inthis regard. Thanking you Phani Kumar --------------------------------------------------------------------- For help using this (nmap-dev) mailing list, send a blank email to nmap-dev-help () insecure org . List archive: http://seclists.org
Current thread:
- bounce scan failure Phani Kumar (Feb 27)