mailing list archives
[NSE][patch] Add AUTH_UNIX to rpc.lua, let nfs-* run without portmapper
From: Daniel Miller <bonsaiviking () gmail com>
Date: Thu, 5 Apr 2012 07:31:43 -0500
I've just finished enhancing the nfs-ls, nfs-statfs, and nfs-showmount
scripts so that they can run based on version detection information,
for cases where the portmapper is firewalled. For nfs-ls and
nfs-statfs, this required making a hostrule to check that both a
mountd service and a nfs service were detected. In the process, I
ended up adding the AUTH_UNIX flavor to rpc.lua, since the RFC states
that AUTH_NULL can only be used for the NULL procedure (and my Linux
nfs-kernel-server was enforcing that).
Other minor changes:
* If running privileged, attempt to bind to a reserved port. Many NFS
servers refuse to talk to source ports >1024, as a "security measure"
* handle an odd case in nfs-ls where READDIRPLUS does not return file
attributes. Chose to use all ?'s, but in the future maybe a direct
* remove reference to nfs.dirlist argument from nfs-ls doc, since it is unused
Hope you like it!
Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/
- [NSE][patch] Add AUTH_UNIX to rpc.lua, let nfs-* run without portmapper Daniel Miller (Apr 05)