Nmap Development mailing list archives
[BUG?} Mac OS X: iflist error when run as non-root
From: Tom Sellers <nmap () fadedcode net>
Date: Sat, 06 Dec 2008 09:16:06 -0600
I am experiencing an unexpected behavior when using nmap to dump an interface list on Mac OS X 10.4.11. It appears that nmap will not list the information properly if the command is not run via sudo or as root. A search of the list archives shows that Matt Selsky brought this up in Nov of 2007 on a SVN version of 4.23 (http://seclists.org/nmap-dev/2007/q4/0359.html). Based on the information I have I am not sure if this behavior is a bug nmap or just normal functionality of OS X. Scans seem to run as expected when running as root (-sS) and non-root (-sT). (I guess I don't often run as non-root as this is the first time I have noticed that -sT does not print the MAC for hosts on the local subnet.) I have noticed that nmap seems to only generate an error message on active interfaces. I tested this by running the command with only en1 (wireless) and then again with en1 and en0 (Ethernet) active. Also, the number of WARNING lines seems to vary. When I first started tested (en1 - wireless only) there were around 10 or so. Later they were down to 3. Any thoughts? Tom OS: Mac OS X Version 10.4.11 - Intel Darwin Kernel Version 8.11.1 Interfaces: en1 AirPort wireless active en0 Built In Ethernet disconnected Nmap: SVN Main trunk - revision 11289 ************************************************************** ************************************************************** non-root, only en1 active ************************************************************** ************************************************************** $ nmap --iflist Starting Nmap 4.76 ( http://nmap.org ) at 2008-12-06 08:51 CST Warning: Unable to open interface en1 -- skipping it. ************************INTERFACES************************ DEV (SHORT) IP/MASK TYPE UP MAC lo0 (lo0) 127.0.0.1/8 loopback up WARNING: Unable to find appropriate interface for system route to 192.168.1.1 WARNING: Unable to find appropriate interface for system route to 192.168.1.1 WARNING: Unable to find appropriate interface for system route to 192.168.1.1 **************************ROUTES************************** DST/MASK DEV GATEWAY 127.0.0.1/32 lo0 127.0.0.1 192.168.1.77/32 lo0 127.0.0.1 127.0.0.0/0 lo0 127.0.0.1 ************************************************************** ************************************************************** root, only en1 active ************************************************************** ************************************************************** $ sudo nmap --iflist Password: Starting Nmap 4.76 ( http://nmap.org ) at 2008-12-06 09:02 CST ************************INTERFACES************************ DEV (SHORT) IP/MASK TYPE UP MAC lo0 (lo0) 127.0.0.1/8 loopback up en1 (en1) 192.168.1.77/24 ethernet up 00:17:F2:99:A6:5E **************************ROUTES************************** DST/MASK DEV GATEWAY 12.120.101.14/32 en1 192.168.1.1 127.0.0.1/32 lo0 127.0.0.1 192.168.1.77/32 lo0 127.0.0.1 224.0.0.251/32 en1 192.168.1.1 127.0.0.0/0 lo0 127.0.0.1 0.0.0.0/0 en1 192.168.1.1 ************************************************************** ************************************************************** non-root, en0 and en1 active - error on both ************************************************************** ************************************************************** $ nmap --iflist Starting Nmap 4.76 ( http://nmap.org ) at 2008-12-06 08:40 CST Warning: Unable to open interface en0 -- skipping it. Warning: Unable to open interface en1 -- skipping it. ************************INTERFACES************************ DEV (SHORT) IP/MASK TYPE UP MAC lo0 (lo0) 127.0.0.1/8 loopback up WARNING: Unable to find appropriate interface for system route to 192.168.1.1 WARNING: Unable to find appropriate interface for system route to 192.168.1.1 **************************ROUTES************************** DST/MASK DEV GATEWAY 127.0.0.1/32 lo0 127.0.0.1 192.168.1.77/32 lo0 127.0.0.1 192.168.1.81/32 lo0 127.0.0.1 127.0.0.0/0 lo0 127.0.0.1 ************************************************************** ************************************************************** non-root, ifconfig ************************************************************** ************************************************************** $ ifconfig lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384 inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1 gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280 stf0: flags=0<> mtu 1280 en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500 ether 00:17:f2:c4:cd:5f media: autoselect status: inactivesupported media: autoselect 10baseT/UTP <half-duplex> 10baseT/UTP <full-duplex> 10baseT/UTP <full-duplex,hw-loopback> 10baseT/UTP <full-duplex,flow-control> 100baseTX <half-duplex> 100baseTX <full-duplex> 100baseTX <full-duplex,hw-loopback> 100baseTX <full-duplex,flow-control> 1000baseT <full-duplex> 1000baseT <full-duplex,hw-loopback> 1000baseT <full-duplex,flow-control> none
en1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet6 fe80::217:f2ff:fe99:a65e%en1 prefixlen 64 scopeid 0x5
inet 192.168.1.77 netmask 0xffffff00 broadcast 192.168.1.255
ether 00:17:f2:99:a6:5e
media: autoselect status: active
supported media: autoselect
wlt1: flags=41<UP,RUNNING> mtu 1500
fw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 494
lladdr 00:17:f2:ff:fe:86:9e:dc
media: autoselect <full-duplex> status: inactive
supported media: autoselect <full-duplex>
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Current thread:
- [BUG?} Mac OS X: iflist error when run as non-root Tom Sellers (Dec 06)
- Re: [BUG?} Mac OS X: iflist error when run as non-root David Fifield (Dec 06)