Re: Nmap 3.80 preview

[Martin Mačok <martin.macok () underground cz>]

On Sat, Feb 05, 2005 at 03:17:16PM -0800, Fyodor wrote:

> o Fixed fragmentation option (-f).  One -f now sets sends fragments
>   with just 8 bytes after the IP header, while -ff sends 16 bytes to
>   reduce the number of fragments needed.

Actually, your version does mtu=8 for -f and mtu=8 for -ff too.

My original version was doing 8 for -ff and 16 for -f. I recommend
this patch to get mtu=8 for '-ff', '-f -f' or '--mtu 8' and mtu=16 for
'-f' or '--mtu 16':

Martin Mačok
ICT Security Consultant

P.S. I will update patches http://Xtrmntr.org/ORBman/tmp/nmap/ soon


--- nmap-3.80/nmap.cc.orig      2005-02-06 14:47:23.000000000 +0100
+++ nmap-3.80/nmap.cc   2005-02-06 14:47:34.000000000 +0100
@@ -555,7 +555,7 @@ int nmap_main(int argc, char *argv[]) {
     case 'e': 
       strncpy(o.device, optarg,63); o.device[63] = '\0'; break;
     case 'F': fastscan++; break;
-    case 'f': o.fragscan += 8; break;
+    case 'f': o.fragscan ? o.fragscan = 8 : o.fragscan = 16 ; break;
     case 'g': 
       o.magic_port = atoi(optarg);
       o.magic_port_set = 1;


---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List archive: http://seclists.org