Home page logo
/

nmap-dev logo Nmap Development mailing list archives

RE: Services matched by script--show a service fingerprint?
From: "Rob Nicholls" <robert () robnicholls co uk>
Date: Mon, 28 Mar 2011 07:19:21 +0100

If it's a hard match by the NSE script then I'd like to see it hide the
fingerprint.

Rob

-----Original Message-----
From: nmap-dev-bounces () insecure org [mailto:nmap-dev-bounces () insecure org]
On Behalf Of David Fifield
Sent: 27 March 2011 22:39
To: nmap-dev () insecure org
Subject: Services matched by script--show a service fingerprint?

Dhruval Gandhi's screenshot at http://seclists.org/nmap-dev/2011/q1/1014
shows port 80 being matched as skype2 by the skypev2-version.nse script, but
a service fingerprint is being shown anyway.

We usually get a bunch of Skype service submissions in each batch, which I
have to ignore because service detection can't match it (that's what
skypev2-version.nse is for, after all). I thought that perhaps the script
was failing for some reason, but now I see that if a service produces
output, it can cause a fingerprint to be displayed even when a script later
matches the service.

Should it work this way? How about hiding the fingerprint (and request to
submit it) when a service is hardmatched by NSE?

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]