Nmap Development mailing list archives

Re: nse crypto

From: David Fifield <david () bamsoftware com>
Date: Mon, 14 Mar 2011 15:03:20 -0700

On Sun, Mar 13, 2011 at 10:15:43PM +0200, Toni Ruottu wrote:

Do we conclude that we need to do performance testing on the nping
server to see how well it performs in regular cases? And then we may
or may not find the reason why the brute force script is so slow.


It can be traced to these lines in EchoServer.cc:

    /* Start the nsock loop. This never returns. Server quits on CTRL-C */
    nsock_timer_create(nsp, empty_handler, 1000, NULL);
    loopret=nsock_loop(nsp, 1000);

Though the comment says it never returns, this actually runs once a
second. Only one connection is accepted per time that this code runs.
Reducing the nsock_loop value to 200 allows 5 password guesses per
second, for example.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

Re: nse crypto, (continued)
- - - Re: nse crypto Patrik Karlsson (Mar 12)
    - Re: nse crypto Toni Ruottu (Mar 12)
    - Re: nse crypto Toni Ruottu (Mar 12)
    - Re: nse crypto Patrik Karlsson (Mar 12)
    - Re: nse crypto David Fifield (Mar 12)
    - Re: nse crypto Toni Ruottu (Mar 12)
    - Re: nse crypto Luis MartinGarcia. (Mar 13)
    - Re: nse crypto Toni Ruottu (Mar 13)
    - Re: nse crypto Patrik Karlsson (Mar 13)
    - Re: nse crypto Toni Ruottu (Mar 13)
    - Re: nse crypto David Fifield (Mar 14)
    - Re: nse crypto Toni Ruottu (Mar 14)
    - Re: nse crypto David Fifield (Mar 14)
    - Re: nse crypto Luis MartinGarcia. (Mar 20)
    - Re: nse crypto Toni Ruottu (Mar 20)
    - Re: nse crypto Toni Ruottu (Mar 12)