Nmap Development mailing list archives
Re: New functions to target.lua library (NSE Leftovers - Part 1)
From: David Fifield <david () bamsoftware com>
Date: Thu, 6 Sep 2012 13:44:08 -0700
On Tue, Aug 21, 2012 at 05:20:34PM -0400, Brendan Byrd wrote:
On Tue, Aug 21, 2012 at 5:18 PM, Brendan Byrd <sineswiper () gmail com> wrote:(This is a split of a larger patch here: http://seclists.org/nmap-dev/2011/q4/558) This patch contains a few new functions to target library, including an exclude list to prevent duplicate IPs from being added, even down to the IP level for ranges. Some caveats: 1. Everything is in Lua. This should probably be converted to pure C code, for speed and accessibility to internal data. 2. This library doesn't have access to NMap's main target and exclude lists, so the new "dupe list" is outside of the existing lists. This means that a new target could still dupe one of the command-specified targets, but it won't dupe after that. This also means that adding a target to the exclude list isn't going to remove future targets that were already added previously. Fixing point #1 would solve all of this. Despite the caveats, I think this might be a good band-aid in the meantime.Yay, it would help if I included the attachment...
Thanks for this, Brendan. I like the idea, which, if I understand correctly, is to prevent "192.168.0.123" from being scanned twice when you do target.add("192.168.0.0/24") target.add("192.168.0.123") Currently the target will be scanned twice because the target library only does string comparison to check for duplicates. This patch seems overly complex for what it does. I wasn't able to understand it after spending a few minutes. It seems to be managing a structure of IP ranges, then testing new specifications to see if they overlap? Are there scripts that are currently causing a problem with adding the same target more than once? I admit that we currently have a bug, but I think we can live with it unless there is a very simple solution. I'm guessing that it's hardly ever a problem in practice. I think writing this functionality in C is a bad idea. David Fifield _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New functions to target.lua library (NSE Leftovers - Part 1) Brendan Byrd (Aug 21)
- Re: New functions to target.lua library (NSE Leftovers - Part 1) Brendan Byrd (Aug 21)
- Re: New functions to target.lua library (NSE Leftovers - Part 1) David Fifield (Sep 06)
- Re: New functions to target.lua library (NSE Leftovers - Part 1) Brendan Byrd (Sep 11)
- Re: New functions to target.lua library (NSE Leftovers - Part 1) David Fifield (Sep 06)
- Re: New functions to target.lua library (NSE Leftovers - Part 1) Brendan Byrd (Aug 21)