Nmap Development mailing list archives

spoofing source address and ICMP pinging (Re: Nmap 3.84ALPHA1: Call For Testers)

From: Martin Mačok <martin.macok () underground cz>
Date: Thu, 11 Aug 2005 11:15:49 +0200

When I use -S and -e to spoof IP address Nmap does it correctly for
TCP pinging and scanning but does not spoof the IP with ICMP pinging.
Packet-trace option prints 0.0.0.0 as a source address of ICMP packets
(echo, time or netmask) and sniffing shows the default IP of the
scanning machine (not the spoofed one).

(Looking at source for a while resulted in a headache ... I'm sorry ;-)

Martin Mačok
ICT Security Consultant


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev

Current thread:

Nmap 3.84ALPHA1: Call For Testers Fyodor (Aug 10)
- Re: Nmap 3.84ALPHA1: Call For Testers Fyodor (Aug 10)
- Re: Nmap 3.84ALPHA1: Call For Testers Martin Mačok (Aug 11)
  - Re: Nmap 3.84ALPHA1: Call For Testers Richard Moore (Aug 11)
- Re: Nmap 3.84ALPHA1: Call For Testers Luke Triantafyllidis (Aug 11)
- spoofing source address and ICMP pinging (Re: Nmap 3.84ALPHA1: Call For Testers) Martin Mačok (Aug 11)
- Re: Nmap 3.84ALPHA1: Call For Testers Max (Aug 11)
  - Re: Nmap 3.84ALPHA1: Call For Testers Fyodor (Aug 11)
    - Re: Nmap 3.84ALPHA1: Call For Testers Emmanuel Goldstein (Aug 11)
    - Re: Nmap 3.84ALPHA1: Call For Testers Greg Darke (Aug 11)
    - Re: Nmap 3.84ALPHA1: Call For Testers Simon Spencer (Aug 11)
- Re: Nmap 3.84ALPHA1: Call For Testers Okan Demirmen (Aug 16)
- Re: Nmap 3.84ALPHA1: Call For Testers David Warde-Farley (Aug 18)
- Re: Nmap 3.84ALPHA1: Call For Testers Daniel Harrison (Aug 19)
- Re: Nmap 3.84ALPHA1: Call For Testers Ron (Aug 25)
  - Re: Nmap 3.84ALPHA1: Call For Testers Aaron J. Bedra (Aug 25)

(Thread continues...)