Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [PATCH] showOwner.nse script causing infinite loop

From: Fyodor <fyodor () insecure org>
Date: Sat, 24 May 2008 18:56:27 -0700
On Sat, May 24, 2008 at 03:12:33PM +0100, jah wrote:

On 24/05/2008 06:44, DePriest, Jason R. wrote:

I've managed to reproduce the issue.  I walked away from my machine for
about three minutes and came back to a 1GB output file.
According to RFC1413 ident requests should be for fully specified TCP
ports and whilst I can't say exactly what the problem is, I've found the
following:


Thanks Jah and Jason.  The patch looks good to me.  It seems that the
problem was that the script was trying ident against the thousands of
open|filtered UDP ports found.  Which is silly, since ident only works
with TCP ports.  I've applied your (typo fixed) patch.

I do think that, perhaps, this script should be modified to still
allow open|filtered for TCP ports.  And then, if it gets a positive
response for a port from identd, maybe it should then mark the port as
open.  That could be useful in some situations.

Cheers,
-F

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: