mailing list archives
Re: [PATCH] showOwner.nse script causing infinite loop
From: Brandon Enright <bmenrigh () ucsd edu>
Date: Fri, 30 May 2008 00:38:13 +0000
-----BEGIN PGP SIGNED MESSAGE-----
On Sat, 24 May 2008 18:56:27 -0700
Fyodor <fyodor () insecure org> wrote:
I do think that, perhaps, this script should be modified to still
allow open|filtered for TCP ports. And then, if it gets a positive
response for a port from identd, maybe it should then mark the port as
open. That could be useful in some situations.
Sorry to revive a somewhat old conversation. With the amount of
fake ident out there I think it would be a mistake to naively trust the
Here is an example I just ran into:
$ telnet <host> 113
Connected to <host>.
Escape character is '^]'.
1 , 1 : USERID : JAVA : Webchat User
Connection closed by foreign host.
I can't remember the last time I saw a properly behaving ident service
If the NSE script tries to connect to all the 'open|filtered' ports
that could take much longer than just doing -sC or -sS. Probably not
the job for an NSE script.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
-----END PGP SIGNATURE-----
Sent through the nmap-dev mailing list
Archived at http://SecLists.Org