Home page logo
/

nmap-dev logo Nmap Development mailing list archives

bounce scan failure
From: Phani Kumar <phani () lantana tenet res in>
Date: Fri, 27 Feb 2004 19:03:27 +0530 (IST)


I am using Red Hat 8 and configured vsftpd on it.

When executing nmap bounce scan, I got the result as:

Host  (10.6.21.1) appears to be up ... good.
Attempting connection to ftp://anonymous:@xxx.xxx.xxx.xxx:21
Connected:220 ready, dude (vsFTPd 1.1.0: beat me, break me)
sent username, received: 331 Please specify the password.
sent password, received: 230 Login successful. Have fun.
Initiating TCP ftp bounce scan against  (10.6.21.1)
result of port query on port 22: 500 Illegal PORT command.
Your ftp bounce server doesn't allow priviliged ports, skipping them. 
Command: PORT 10,6,21,1,0,22

And you didn't want to scan any unpriviliged ports.  Giving up.

But I configured vsftpd to access all the privileged ports. My 
/etc/vsftpd.conf file is shown below:

anonymous_enable=YES

local_enable=YES

local_umask=022

dirmessage_enable=YES

xferlog_enable=YES

connect_from_port_20=YES

xferlog_std_format=YES

pam_service_name=vsftpd

pasv_enable=YES

pasv_promiscuous=YES

pasv_max_port=65500

pasv_min_port=1

I actually have to get positive result from nmap as port 22 of
10.6.21.1 is open. But its not. Can anyone explain why it is?
Should I change any configuration of vsftpd to make nmap get positive 
result on this bounce scan?

I would really be thankful if anyone helped me inthis regard.

Thanking you

Phani Kumar


---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List archive: http://seclists.org



  By Date           By Thread  

Current thread:
  • bounce scan failure Phani Kumar (Feb 27)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault