Home page logo

nmap-dev logo Nmap Development mailing list archives

Re: [PATCH] showOwner.nse script causing infinite loop
From: Fyodor <fyodor () insecure org>
Date: Sat, 24 May 2008 18:56:27 -0700

On Sat, May 24, 2008 at 03:12:33PM +0100, jah wrote:
On 24/05/2008 06:44, DePriest, Jason R. wrote:

I've managed to reproduce the issue.  I walked away from my machine for
about three minutes and came back to a 1GB output file.
According to RFC1413 ident requests should be for fully specified TCP
ports and whilst I can't say exactly what the problem is, I've found the

Thanks Jah and Jason.  The patch looks good to me.  It seems that the
problem was that the script was trying ident against the thousands of
open|filtered UDP ports found.  Which is silly, since ident only works
with TCP ports.  I've applied your (typo fixed) patch.

I do think that, perhaps, this script should be modified to still
allow open|filtered for TCP ports.  And then, if it gets a positive
response for a port from identd, maybe it should then mark the port as
open.  That could be useful in some situations.


Sent through the nmap-dev mailing list
Archived at http://SecLists.Org

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]