Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re: ambiguity about nmap results
From: "sara fink" <sara.fink () gmail com>
Date: Fri, 30 May 2008 22:28:50 +0300

nmap -l or -a shows the following:

tcp        0      0 *:8010                  *:*                     LISTEN
tcp        0      0 localhost:mysql         *:*                     LISTEN
tcp        0      0 *:37323                 *:*                     LISTEN
tcp        0      0 *:6543                  *:*                     LISTEN
tcp        0      0 *:6544                  *:*                     LISTEN
tcp        0      0 localhost:ipp           *:*                     LISTEN


On Fri, May 30, 2008 at 10:25 PM, Mike pattrick
<mpattrick () rhinovirus org> wrote:
Run the following command:

#netstat -l

that will tell you what programs are listening for connections

The following is also useful:
#netstat -a


On Fri, May 30, 2008 at 3:22 PM, sara fink <sara.fink () gmail com> wrote:
on my laptop I have nmap version 4.60 from gentoo portage.
4.62 appears as non stable in portage.

How can I measure reliably what ports are open on my laptop. I don't
have root access to remote servers to run something else than nmap
-sT. and the version there appears to be old.

On Fri, May 30, 2008 at 10:13 PM, DePriest, Jason R.
<jrdepriest () gmail com> wrote:
On Fri, May 30, 2008 at 7:47 PM, sara fink <> wrote:
I tried to use nmap from this web site:  http://www.nmapyourself.com/.

If I try to run nmap on my external ip say at range 1-1024 with flag -sT I get
Starting Nmap 4.20 ( http://insecure.org ) at 2008-05-30 14:42 EDT
Old version:    ^^^^
4.62 is the latest you can download as released.

Interesting ports on some ip .:


Not shown: 1022 closed ports
PORT    STATE    SERVICE
0/tcp   filtered unknown
139/tcp filtered netbios-ssn
445/tcp filtered microsoft-ds

To check myself again, I connected via ssh to some other site and from
there ran nmap -sT -p 1-1024 ip

From there I got a completely different result. Almost all the 1025
ports are open except very few.

Someone can explain me why I get such a difference?

Also, nmapyourself.com isn't run by Fyodor, so you should probably ask
the guy who runs the site to check it out.


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org



_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault