Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Nmap Development: Re: nmap on GPRS connection & problem

Re: nmap on GPRS connection & problem

From: Martin Mačok <martin.macok_at_underground.cz>
Date: Tue, 2 Aug 2005 08:57:09 +0200

On Mon, Aug 01, 2005 at 10:27:41PM +0100, zaka rias wrote:

> Interesting ports on 207.46.199.60:
> PORT STATE SERVICE VERSION
> 80/tcp open http?
> 443/tcp open ssl Microsoft IIS SSL

> Interesting ports on 207.46.18.30:
> PORT STATE SERVICE VERSION
> 80/tcp open http Apache httpd 2.0.50 ((Fedora))
> 443/tcp open ssl Microsoft IIS SSL

> microsoft runs apache ?

I'm not sure if this is the case (207.46.18.30 really belongs to
Microsoft) but it is not strange that by visiting www.microsoft.com
you could be served by Unix/Linux/Apache server because Microsoft
uses Akamai services for loadbalancing. You could check that on
http://searchdns.netcraft.com/?host=.microsoft.com

Transparent proxy server (as already suggested by Nils) could also
explain it.

If you want to dig deeper, use ethereal and/or nmap --version_trace
...

Martin Mačok
ICT Security Consultant

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Received on Aug 01 2005

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos