Nmap Development: Re: Different scan results depending on whether root or unprivileged

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Nmap Development mailing list archives

Re: Different scan results depending on whether root or unprivileged

From: "Eddie Bell" <ejlbell () gmail com>
Date: Wed, 10 Jan 2007 17:33:53 +0000

On 10/01/07, Tim Edwards <tkedwards () fastmail com au> wrote:,

Does anyone know why these results would be different?


I'm guessing but I presume it is because unprivileged ping scan uses
connect(), so it has to establish a full connection to determine if a
host is up. Root ping scan uses raw packets and nmap assumes a host it
up if it gets any reply to its probe.

To be sure, run it with --packet-trace and you can see what is happening.

  - ejlb

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

By Date By Thread

Current thread:

Different scan results depending on whether root or unprivileged Tim Edwards (Jan 10)
- Re: Different scan results depending on whether root or unprivileged Eddie Bell (Jan 10)
  - Re: Different scan results depending on whether root or unprivileged Kris Katterjohn (Jan 10)
- Re: Different scan results depending on whether root or unprivileged Hans Nilsson (Jan 11)