Home page logo

nmap-dev logo Nmap Development mailing list archives

Re: GSoC : CPE , SCTP ,Update feed
From: Daniel Roethlisberger <daniel () roe ch>
Date: Wed, 4 May 2011 01:03:54 +0200

Sorry for replying on a month-old thread, but I think it's worth
a comment:

ambarisha b <b.ambarisha () gmail com> 2011-04-03:
On Fri, Apr 1, 2011 at 11:16 AM, David Fifield <david () bamsoftware com> wrote:
One more idea I had in mind was adding SCTP support for NSE.But there
was mention of some problems being reported about the SCTP
functionality.First that has to be investigated.

I don't remember hearing of problems with SCTP in NSE? Can you remind me
what they were?

May be I was a bit unclear,I meant the normal -sY/-sZ scans.Have a
look at this discussion tagged in the
todo:http://seclists.org/nmap-dev/2009/q2/672.It might just be a
misconfiguration in the network.Still its worth a look.Presently, I
get all the ports filtered.Perhaps, scanme.csnc.ch is now firewalled ?

The SCTP scanme box can still be reached at scanme.roe.ch.  UDP
and TCP are filtered, ICMP and SCTP are unfiltered.  IPv4 & IPv6.

My previous employer (who sponsored parts of the SCTP related
development) unfortunately removed the CNAME record for
scanme.csnc.ch from their nameserver after I moved on to a new
employer last year.

As for the problems some experienced with -sY/-sZ:  Revisiting
the SCTP scanning code is actually still on my to-do list.  Since
I was unable reproduce the behaviour experienced by Brandon and
Fyodor at the time, I am not sure whether the Nmap SCTP code is
to blame or not.  Maybe this summer I will get around to revisit
that, but please do feel free to jump in if you like.

Daniel Roethlisberger
Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]