Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: massping -> ultra_scan prototype completed

From: David Fifield <david () bamsoftware com>
Date: Tue, 24 Jul 2007 11:36:30 -0600
On Mon, Jul 23, 2007 at 11:40:23PM -0700, Fyodor wrote:

On Fri, Jul 13, 2007 at 12:53:15PM -0600, David Fifield wrote:

I have finished a prototype of my proposed changes that implement
massping using ultra_scan (see http://seclists.org/nmap-dev/2007/q3/0023.html)
for some background). You can check it out with


Hi David.  It looks good so far!  Hopefully other people will take a
look and do some testing too.

I noticed that you have an nmap-massping-migration and also
nmap-massping-test branches under
svn://svn.insecure.org/nmap-exp/david/.  I'm assuming we should test
the -migration since that's the one you mentioned in your email.


That's right. Though right now I'm keeping the two branches pretty much
in sync.


I'd like to ask for your feedback on how I've done the migration.
r5095:5125 (svn diff -r 5095:5125) are small changes and bugfixes that
shouldn't be controversial. r5126 (svn diff -c 5126) is the big change.


I think you probably mean revisions 5215 and 5216 rather than
5125/5126.


Bah. Right you are. The commands should be

        svn diff -r 5095:5215
        svn diff -c 5216

(I did mean "-c", not "-r". "-c 5216" is shorthand for "-r 5215:5216".)


I used Nmap -iR to create a list of 10,000 IPs as so:
But I repeatedly got this error:

Your system does not support select()ing on pcap devices (Interrupted system call). PLEASE REPORT THIS ALONG WITH 
DETAILED SYSTEM INFORMATION TO THE nmap-dev MAILING LIST!
QUITTING!

This is probably a bug in the recent pcap-select patch rather than
your changes, but your changes just happen to expose the issue.  It
doesn't seem to happen with the old system.  The solution is probably
just to test for EINTR and then retry the select rather than quitting.


I had seen this too a few times. I meant to investigate it but then I
forgot about it. I committed a change to -migration and -test that does
what you said.


An important aspect of the migration project is testing and perhaps a
little tuning.  Trying various (unintrusive -- like port 80 pings)
host enumeration tests on, say, 50,000 IPs generated with -iR and
comparing the results (time taken and hosts discovered) with the old
system should be quite instructive!  The goals for this project are to
clean up the code, make host discovery faster, and make it more
accurate.  A tall order, I know :).


Okay, I'll see about running some tests.

David

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: