mailing list archives
Re: [NSE] external category anticipated load
From: David Fifield <david () bamsoftware com>
Date: Thu, 19 Apr 2012 12:45:04 -0700
On Wed, Apr 18, 2012 at 11:50:57AM +0200, John Bond wrote:
Hello Nmap hackers,
I am have written a script which makes use of an external service.
The script would be a replacement/compliment to asn-query, targets-asn
and whois. however there is worry that the increased load would take
down the service. in an effort to try and gauge this i wanted to ask
if there is anyone here who would be able to give a good estimate of
the number of requests one should expect to see from a script placed
in the safe, external and discovery category.
So what's the problem exactly? This some new third-party service that
aggregates the information already available from different sources? And
this new service can't handle as much traffic as those other sources,
but might be more convenient because it gives all the answers at once?
Another concern raised by the service provider was that they would
have a record of everyone nmap user that used there service (i.e. web
logs). Is this a genuine worry, has it come up before for other
That's why the external category exists. Any of the externals services
we use could potentially be logging everything. It's a bit worse if this
new service is set up exclusively for Nmap use; then it's likely that
any query the service receives was also the target of a port scan.
Finally the service provider would want to include, in the output, a
line stating that the results were provided by them. Would this be
Speaking for myself, I would find that annoying.
Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/